604c219bcab5c3142c6c929eefdb1d2b_JaffaCakes118 | Triage

Sharing

General

Target

604c219bcab5c3142c6c929eefdb1d2b_JaffaCakes118
Size

46KB
MD5

604c219bcab5c3142c6c929eefdb1d2b
SHA1

eadaf0509bf0451eebc19e77859fc0a7003ff9d7
SHA256

8210328831df429cf39163352fa2f8a310b3827531c696e79701a1e8e55aa172
SHA512

c7a41ee5533d1b371732f72c66397ea706cf0688253d02782f870688b36cd1a84f6e0d2d7cd499737543310f83f62c63cdf3da0ac12158e2f36eb779af14faf7
SSDEEP

768:yd2XzhqPgwLWFCCYNMbSOV/yg/PDez2GuwCWsADce+U2/4HbgOlTeJtdveL:yd2XzhqILACyMGOcgKSGEADAUrUiGs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
604c219bcab5c3142c6c929eefdb1d2b_JaffaCakes118

Files

604c219bcab5c3142c6c929eefdb1d2b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Stels0
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Stels1
Size: 12KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Stels2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.stels0
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ