686294fcb32219bebd1a8c3dbd11771a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

686294fcb32219bebd1a8c3dbd11771a_JaffaCakes118
Size

453KB
MD5

686294fcb32219bebd1a8c3dbd11771a
SHA1

f71b90d04652763103686f1a04c1d86c284019f8
SHA256

d5cd4f448668d2c61dfa2f738dd39d2f5935810086b3166a0233a7d139d973ed
SHA512

0b9503d69409547235ab99c12740ce29fa4ce0512d0b4e42de10b92419ec52ed6ddec310af8742c6872414dd61a2485ccf62727d2207713c2d678e17adfb36c0
SSDEEP

6144:ALOA0She8WlqAf2hy8L43UVHLUhByBza9PUpNu73F+ld89SzGG/kTTffiY1QE:BA3bMYcDUvQF+lu9SzGGgLfD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
686294fcb32219bebd1a8c3dbd11771a_JaffaCakes118

Files

686294fcb32219bebd1a8c3dbd11771a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.t8ynyn
Size: 1KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xw78lh
Size: - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.loader
Size: - Virtual size: 3.0MB

.rbss
Size: - Virtual size: 428KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 435KB - Virtual size: 436KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE