65e6c455511295a6436ff5356466c07a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

65e6c455511295a6436ff5356466c07a_JaffaCakes118
Size

213KB
MD5

65e6c455511295a6436ff5356466c07a
SHA1

da4f41664db01e975349416d40e9fa61aa62e643
SHA256

71b81cae39eed3e3e20b35309629ccf7eb8f13755298d151933a36d7dd46aa66
SHA512

a6a13ccaed8962f03c8b321d8234af7727b76b8eed5ba444b9d660e314f3076841286f6f77ef886079a76f98ffb116b55e502aab735506cd2a864b5f0e48b103
SSDEEP

3072:4WzhM5cTxz2AHVNVNbsaOQxCWhtvHWAcal6cr9t9vM9dObaIu6jv:4WlMuTJ2iOuHVZIi2dOLv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65e6c455511295a6436ff5356466c07a_JaffaCakes118

Files

65e6c455511295a6436ff5356466c07a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1.0MB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 54B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE