49a055373e419337f821d2d591b27769_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49a055373e419337f821d2d591b27769_JaffaCakes118
Size

432KB
MD5

49a055373e419337f821d2d591b27769
SHA1

47ac85b9f96eaf6b3f71aaa4aed8e1d8c260b4b7
SHA256

cde73c2370a6588233bf5fa1c6964b7c462fe1f7dfcc2b29eeff8b06ba0b6931
SHA512

6f0ae7cdf10872dc8cf6f1ee573d70d2ded70d056116c877b02c0fdd0888a10474f465604bd94905058f8a0915e1a7cc7dded0dbce05aaff34c0701e12317278
SSDEEP

6144:vPi1knYNHN/x55ef/m/lH4APRoJ1ZKG0cPhsn9Jkmn5P+xSK6I1Nb13l:sknkjef/UPiDZZlsnb+cKZ/1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49a055373e419337f821d2d591b27769_JaffaCakes118

Files

49a055373e419337f821d2d591b27769_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 359KB - Virtual size: 359KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ