630273c0261dd606d3a69dff12014dbf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

630273c0261dd606d3a69dff12014dbf_JaffaCakes118
Size

639KB
MD5

630273c0261dd606d3a69dff12014dbf
SHA1

674d76d9b9d59f8f944a1701023d825135d41ec8
SHA256

b763776ac1a1cde58cf4bf0a342ca0ea357988e19e7be68d37a7f2c8a3aa4065
SHA512

801145ff6b8ce221457077303bb16e248b170d4be00d4bf0af7b6bad79e028717dcde1d8e97676732a65600bbb1b658c7e80087d0063359dba94f47465d36816
SSDEEP

12288:oxiIuYsADbNq3vX+t2McfcIjMiA+xC5aa1UZtlNQIPRYyOi9e:DsbNqfX8mfcLjxcQ8Yy5e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
630273c0261dd606d3a69dff12014dbf_JaffaCakes118

Files

630273c0261dd606d3a69dff12014dbf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 12KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.955229
Size: 583KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE