44b9e93d85f0b6f158cb8f6b40c20ab4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44b9e93d85f0b6f158cb8f6b40c20ab4_JaffaCakes118
Size

434KB
MD5

44b9e93d85f0b6f158cb8f6b40c20ab4
SHA1

b4efad0e3871f6fc43af7d68c79fba0155037bc3
SHA256

b3602e4e195d2b2657483bd9fca4c19e97372d20712201be33a4857dfa380589
SHA512

abb9451d216e3964cd4783230c0697040a469d4979358e597c8801b394c01d5da7323053168c41f68b4b77a089e5e61c9c29a527f23f6346215fc93634f69476
SSDEEP

6144:PnBSk6wT6Xk/D7cNdROVeQ4MpK0rDwr9sdAd5JlacUBCJlhQM:PnAYUIcNdsZTD2oAd3l6QJlWM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44b9e93d85f0b6f158cb8f6b40c20ab4_JaffaCakes118

Files

44b9e93d85f0b6f158cb8f6b40c20ab4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.v9oyr3
Size: 1KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wb8nio
Size: - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.engine
Size: - Virtual size: 3.0MB

.loader
Size: - Virtual size: 448KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 428KB - Virtual size: 432KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE