441c642b90025885f5626bd2e85dcf73_JaffaCakes118 | Triage

Sharing

General

Target

441c642b90025885f5626bd2e85dcf73_JaffaCakes118
Size

57KB
MD5

441c642b90025885f5626bd2e85dcf73
SHA1

4800d755a4b0c652dc4948589bf0197c4cb7a90d
SHA256

acd3a256a4a11620c8d3af48a9d4f022b2e52bdcd9ee1c3a43eafb633a42402b
SHA512

ca1379a495d2b917199bfcdfa55265f50d8e47ddef76e2976028e9359b470d1c998b53d037cf38f59ee917689ea94fbc75d88443b3351cf5474ff21935953513
SSDEEP

1536:D2LVckD0lAN/fugAqXM6rQKNEyb/mllVBk:Ds3fN3uLueIm3k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
441c642b90025885f5626bd2e85dcf73_JaffaCakes118

Files

441c642b90025885f5626bd2e85dcf73_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

'$0
Size: - Virtual size: 600KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

'$1
Size: 80KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

'$2
Size: - Virtual size: 870B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE