47ed05ffa90a152fee4a346260e888e7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

47ed05ffa90a152fee4a346260e888e7_JaffaCakes118
Size

1.5MB
MD5

47ed05ffa90a152fee4a346260e888e7
SHA1

1a920ee1dd3948773ef51da41e40519669397ac4
SHA256

381db4c5d490253d026dd828132c39fa361892fbd3de1f6f5dee8b94200b20df
SHA512

dd52c94f833f3c603ee80172bc89bf25d74fb4b9682a7a6f0d02b07872076d2b1c2b48680e097b12300f09cb1e62cb348ea36d8827e18d229c4ef0a213f4ee0c
SSDEEP

24576:zGWTpFEQ67lk3Tel5Ybl/oZ75VKnUoEh7in6imgB7OgjGzkF1f3G:zGeEr74DlQh5uUoE05JN/jGzu1/G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47ed05ffa90a152fee4a346260e888e7_JaffaCakes118

Files

47ed05ffa90a152fee4a346260e888e7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d7602919b2f14c02b105ca978b775237

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

shell32 kernel32

SHFileOperationA 84

Sections

CODE
Size: 65KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ