485a947322cff2f61a418a5305bba372_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

485a947322cff2f61a418a5305bba372_JaffaCakes118
Size

211KB
MD5

485a947322cff2f61a418a5305bba372
SHA1

fedd6f63b533ab65de188cdeb71ad3b5e7299515
SHA256

be028bbee13e1e5f5e422fbc7cc35db9f8b5299096ca27c15440bf4c37136646
SHA512

65acba5a5f29c33dc2a2e36df12347a1df5f48518db751390b87986fd788763c85fc2809d0cde24d6aa1283f4897624f957525841fb15b5c3e335079eed21b0c
SSDEEP

6144:2RssIaLepaVCm24OUTYPWfyQ+hwZn0AH6XW1xwSa:u3b/jT0WfyQ6wGAqW1xC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
485a947322cff2f61a418a5305bba372_JaffaCakes118

Files

485a947322cff2f61a418a5305bba372_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 280B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 186KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ