4717e83f0f6bfd868f063ad5451c070e_JaffaCakes118 | Triage

Sharing

General

Target

4717e83f0f6bfd868f063ad5451c070e_JaffaCakes118
Size

322KB
MD5

4717e83f0f6bfd868f063ad5451c070e
SHA1

bc8d17d32d7a841c376f5b8d11e6f977a604ae06
SHA256

1b6712efc8e148ac28004edd0fbcbebb4c0b262f5cd5d655a23fa8122f015b99
SHA512

a80619474e6b90278acafd2d1cafadfeaefde93440ee1f939d43e8f7accc83e0ad7ba77b935fd76ba9c3befa2c5ce612defe2e93d03945b4aad4c6bde3da4d7a
SSDEEP

6144:K+g4VyGWAcGVGluvVpf/1nXQPlP40Fs8fdXBfS0A2lmQTZ45r:2icGSuvVpflXQ9PpFxVX1Swlmsm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4717e83f0f6bfd868f063ad5451c070e_JaffaCakes118

Files

4717e83f0f6bfd868f063ad5451c070e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

CODE
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.gdata
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 297KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ