64f4db0df33ced449cb011cb0a03a44c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

64f4db0df33ced449cb011cb0a03a44c_JaffaCakes118
Size

757KB
MD5

64f4db0df33ced449cb011cb0a03a44c
SHA1

0b4291197c2d787e95030327eaa0e1296d0dc61e
SHA256

66df8760dff6e25c6b39fa6d6463a5c0674c8651a929856e22a4053b7adefda0
SHA512

0c11ddf1d16e0163c803c878ec6f129371c5ca6c7386325fc5bc7e96d211c6d6a38ed146ed65c0f6ded1d92ce437974f87f5246161e65b38f6a3d12a89ad7c49
SSDEEP

12288:fPU0a+3EZkC2D138SVwEleHagWyg8IM4sjoyGJO+JxByCWxw2sk02kxsO:na+UyCC38SzeHSg/SxBytOtr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
64f4db0df33ced449cb011cb0a03a44c_JaffaCakes118

Files

64f4db0df33ced449cb011cb0a03a44c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.code
Size: 4KB - Virtual size: 320KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 658.0MB

.hqcblb
Size: 479KB - Virtual size: 480KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 266KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ