497244da53708c54277bf59f8b6a4f43_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

497244da53708c54277bf59f8b6a4f43_JaffaCakes118
Size

748KB
MD5

497244da53708c54277bf59f8b6a4f43
SHA1

104eac37076af2148fd157503e55b4e045b0205d
SHA256

d03565c501a92bc2ba63541251d9186c6ce9f789c9cb5a7c233efec9608fecd1
SHA512

5c98bc9f60917f1108fdc01af155e2b11c78d3c30f62e55be8f7f71265624e4f30f8468de9bc7e0479f9012778caa04439bbe7a25407eb33d236eecfefa7d6c5
SSDEEP

12288:qH2UO7Z+mTYKxAvj7l0NFeOeewoMTr5buyhs1uoM5aPzU0KimlHQ6sNEDj/Ih:qH2UO77YKe7l0fe9ToQlyyhMuWzU0FmW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
497244da53708c54277bf59f8b6a4f43_JaffaCakes118

Files

497244da53708c54277bf59f8b6a4f43_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

kwezzbup
Size: 1.0MB - Virtual size: 28.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hhtppzol
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wbhfesni
Size: 640KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ylgrmdmo
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE