4181db71f830e9d6a6c24ff9816663d9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4181db71f830e9d6a6c24ff9816663d9_JaffaCakes118
Size

895KB
MD5

4181db71f830e9d6a6c24ff9816663d9
SHA1

20622c23e53897a4dbddac693d9b804fba861083
SHA256

e9b6674eae97e3197b9e910e7023712cb2c9aff6b0f806790808592a244f0f64
SHA512

116a53e993c4e09be80e8f589d44b2f6ee8eb3dca62dac4523bbd11578db2fce2cace1f0830da904fdb3ddcc4932996a4a18561d6ca3c82d38427f279e619c61
SSDEEP

12288:uGJQW1K3Dnsxsb3KPjZNuSIw7uBflYN0ThoVLCNMRQ3MATMOqHpkU:uGSW4DsxsbkcflYN0S1CSQ3lTMTHp9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4181db71f830e9d6a6c24ff9816663d9_JaffaCakes118

Files

4181db71f830e9d6a6c24ff9816663d9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 368KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE