48dd238847b887890b3588e81f79d067_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

48dd238847b887890b3588e81f79d067_JaffaCakes118
Size

705KB
MD5

48dd238847b887890b3588e81f79d067
SHA1

b4068850d386a75f50737d3ef7ad77063d33e584
SHA256

a26989ea5c7d24b590b4d06cb5ec24c0f1c1eb3237bad13ae8cb3438b339b704
SHA512

e883e4cd7133ab96cf0308b31b57c7c5efb66aa129d19ab54c280024ea77719ac14ccf76aea4bb1fc3d02dce7c0b81698e9d797d8f8792949fc9f6cff9e0dac9
SSDEEP

12288:o9SNMw2AZM19BHrSFPq38Gj5x9sFvuShMerKF3Z4mxxn+jAh/078w5jAlC/:FpBeQPW8Gj5xAvdhd+QmXn+ss7/lAa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48dd238847b887890b3588e81f79d067_JaffaCakes118

Files

48dd238847b887890b3588e81f79d067_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

Size: 20KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 349KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 327KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE