4a8902248d351b35c0d742c61303bc88_JaffaCakes118 | Triage

Sharing

General

Target

4a8902248d351b35c0d742c61303bc88_JaffaCakes118
Size

384KB
MD5

4a8902248d351b35c0d742c61303bc88
SHA1

b03891ab6fa4efe408ecc2eba4ef587024bca93d
SHA256

1b789ebdbdba5ffef173661c0715eb8fbfd40622986a1004a17f46d1fa8ccf78
SHA512

017ce31661aa86460a1786e09c90295d80a71039ea048a7316bc96ada7da9eef3ee5835ff40ade1e67d4fa8a2bbad0c6674cfa8df4e5c9366195535ee673419b
SSDEEP

6144:4dYOr9QpFXKn44IcVsLUFtoa62+4jLLOFHIe9cmexLGi/ZbgA2cQyeSjhJdl:9Or9aYn4VXATOFjexLv2cQ3S/r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a8902248d351b35c0d742c61303bc88_JaffaCakes118

Files

4a8902248d351b35c0d742c61303bc88_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 325KB - Virtual size: 324KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ