63c7057a9e313f750a3ebd25389f86ab_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63c7057a9e313f750a3ebd25389f86ab_JaffaCakes118
Size

756KB
MD5

63c7057a9e313f750a3ebd25389f86ab
SHA1

865b7648344eb959f537492c956d981fa85b898a
SHA256

3371d0e5e000957215fb928e13c92b7329cb7dc3c5d0bf3ee7c66a7dbee36b78
SHA512

18dcbe5eb741f5bf5249ae4abcd8027b47521810d0767e2fb059065037d70fd3d4007bde8f186c46517d52018e88b21129619ade1dc6b3bdf85d030989d531cc
SSDEEP

12288:cIX++UBtBxZkfHuvLMhbMq0bjwJx5ALNKEUsaxBOJPK2D2vN12GeNcGFN9cZlxwP:cgMPnZjIbMPbj2x5A5KOafQMOV99MwKE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
63c7057a9e313f750a3ebd25389f86ab_JaffaCakes118

Files

63c7057a9e313f750a3ebd25389f86ab_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.bt5umk
Size: 745B - Virtual size: 1.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ykj$nh
Size: 673KB - Virtual size: 676KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 76KB - Virtual size: 80KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE