48bdcfc2a04b87fa78377af4826892b8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

48bdcfc2a04b87fa78377af4826892b8_JaffaCakes118
Size

214KB
MD5

48bdcfc2a04b87fa78377af4826892b8
SHA1

f1b659b5b1eaa67fd0df6b0989bbdc1acbbf07d2
SHA256

a45dfd22ca6643548570d13635901f414bb44412b1fa5e97bdf739a5587f1b42
SHA512

daadc2ee90e7cb6b0ce9f023e223023828dd70570ebc32d8a52affc4a975117bdf56da8bdd5cdc5a06c1e399c1231f802e4ee3fb8ce0059955226b197ddbe34a
SSDEEP

24:e9GSll5AEdQJaP0/lejg8m02dEMh/LDX9:KlYE2Jk6Ujrm02dEMh/H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48bdcfc2a04b87fa78377af4826892b8_JaffaCakes118

Files

48bdcfc2a04b87fa78377af4826892b8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.datasec
Size: 8KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 176KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ldata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsec
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ