63ec23d92ad6798b5db8081d79073147_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63ec23d92ad6798b5db8081d79073147_JaffaCakes118
Size

4KB
MD5

63ec23d92ad6798b5db8081d79073147
SHA1

9ad542626e3d1fe6117aaee5951e6eeea33a33b1
SHA256

2df0568641baa3b56a6ce12f6687a773faa77e94f5091df582a48b5819bc4822
SHA512

dcbc1b2b5ef51227a37e854a4feb41b89dc7eccb96bdafa171a0ee4ff3e7374071743b5b32b15f49814f2f6f02b27613330550747211f8c83e2714670c156847
SSDEEP

96:nP/IRgS6v2cksIhOSuVw2vys+zm0phzCn:nnIRg1v2c5eqjaVhzCn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
63ec23d92ad6798b5db8081d79073147_JaffaCakes118

Files

63ec23d92ad6798b5db8081d79073147_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 158KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 819KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 17KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ