4033eca1a4e84b10647732562e2a6cd1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4033eca1a4e84b10647732562e2a6cd1_JaffaCakes118
Size

97KB
MD5

4033eca1a4e84b10647732562e2a6cd1
SHA1

eed30033343f4cf8654101d25d284198d7a3ac2e
SHA256

04611e17399e9b99a1c9ff3a690f515913550f68e21f08d7a0a8c93f8aa78411
SHA512

6ee4e7ba9b3aa1e5f3e3c44c9ec4a8b26d27720806753424fade4a8781939a250b6ceef218e2ecda1908dfb256f9b4f7adfd8d8bd3718e728cfd643418956695
SSDEEP

1536:6TFjmg9IlJldmvP0nQlTO9FU2I9T7vR9hbu/RkTU2zaNbp0z:cFSg9IbldoTO9qPzzhi/OTU2zIb2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4033eca1a4e84b10647732562e2a6cd1_JaffaCakes118

Files

4033eca1a4e84b10647732562e2a6cd1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 276KB - Virtual size: 274KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

msicr_os
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ