4d75a52f2442c015c13b2477fcce61d6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4d75a52f2442c015c13b2477fcce61d6_JaffaCakes118
Size

662KB
MD5

4d75a52f2442c015c13b2477fcce61d6
SHA1

0c3fe6dae5682dcfdf7d0f316c966bf1bfcbc3f6
SHA256

947dc71e0c630de866c988f693cef5d422005e03c190f4a57bdb6f9535d332ad
SHA512

f0294223ee02e00cb546636ebf7b7da5e9eb357fe9e8ba1fc386eb3b52cfe98cae0afa1b88a64e5d3f00ad697c924963592b87cdc9759880697d1e46f6d6ba9f
SSDEEP

12288:agGOo5z3VLvRd75AYfnhk+lSZv0CjgAYXKoEeaR4L0fN/Q0dAzW/hyblyw:agY31vv72Yfn++lSZvPKX74pGzW/hyxx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d75a52f2442c015c13b2477fcce61d6_JaffaCakes118

Files

4d75a52f2442c015c13b2477fcce61d6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 73KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 582KB - Virtual size: 584KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 908KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE