697676c1484dc4c0095114b9e9c61073_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

697676c1484dc4c0095114b9e9c61073_JaffaCakes118
Size

11.8MB
MD5

697676c1484dc4c0095114b9e9c61073
SHA1

418a10824a1c7903e2f0ebc3d6971013927913c1
SHA256

fc2561140496f23580b5f22789c198354a22a679b270e64268144db93df3c74e
SHA512

950b211726685aedf2b7fa00542c36808e444f749701b94d3cbc351bedbf2018eae085f1584a6064ac376fee52cce640bd7b09ab5497df52bbde41741a5951ad
SSDEEP

196608:MIXUnh156Vrl261aS2rvuaxNVj1mXBf27i83B01RmtoxZ+feOv44KpfFIBW/qPaq:MuUnZ6VwS2rv/VjMXBfGO0mYfeEqfqB1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
697676c1484dc4c0095114b9e9c61073_JaffaCakes118

Files

697676c1484dc4c0095114b9e9c61073_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 972KB - Virtual size: 972KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 36B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 310KB - Virtual size: 309KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ