4812aa6580fe9c6c520db2dd549f160a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4812aa6580fe9c6c520db2dd549f160a_JaffaCakes118
Size

43KB
MD5

4812aa6580fe9c6c520db2dd549f160a
SHA1

27736b20575fa16851624c741ece2d06bb3cfe24
SHA256

efb196db1b7479c37086704a2ddb52516775518a6045b1bcb1873d850979db69
SHA512

bf36711f3e8c005a51ff05dc294e6161ee8a37cb911afa1e78147caae48d41b2cbb3e37acc615b5531500e9841412a6d8763f1b5039cf4bcdb6526170ee8bbea
SSDEEP

768:Fw1md/3gGa+R3v+JeQ2n3GYMOMYNLfS90wLAJSVXcwixHKG+:F5qGlRGef1MnYNLELChwiFU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4812aa6580fe9c6c520db2dd549f160a_JaffaCakes118

Files

4812aa6580fe9c6c520db2dd549f160a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

code
Size: - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

text
Size: 41KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wtq
Size: 1B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ