4c466118cf5731dc5d05daa48bb0228e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c466118cf5731dc5d05daa48bb0228e_JaffaCakes118
Size

1.9MB
MD5

4c466118cf5731dc5d05daa48bb0228e
SHA1

756c487ad961a80dcbfb92d054ce1ff01fe39777
SHA256

dd0331a96854cb02e81629aca90c9444179b9c683d48486d739c0e2e295962b2
SHA512

11747a665554ed19545263587da95a40dbb429bca98afd2c09198b2eae6b8f50dee12f539da8d71b8f202edd66737592881d751c9c62f821cc3a445bd9f3cc0e
SSDEEP

12288:1KxtcdegoLYSbPB8evb0RrjjbGdQdCsBXpl9DnMVcKcz:dtohPB8KmrP+QdtXpl9D0cz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c466118cf5731dc5d05daa48bb0228e_JaffaCakes118

Files

4c466118cf5731dc5d05daa48bb0228e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.klyml7
Size: 1KB - Virtual size: 740KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bsn43i
Size: - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.1wihe9
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.7s3avc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.0es99p
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$ll6dm
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.q91e2g
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug
Size: - Virtual size: 3.0MB

.loader
Size: - Virtual size: 448KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.null
Size: 499KB - Virtual size: 500KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE