71b6e8037783bf832b4b97c2cdbcd239_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71b6e8037783bf832b4b97c2cdbcd239_JaffaCakes118
Size

446KB
MD5

71b6e8037783bf832b4b97c2cdbcd239
SHA1

72897cce4c38a46c38f96e5ac10bbba73ef9e723
SHA256

c8c46b0e60859f9598fd42a285f85f2744f426cb35950c9f35841f989ec55163
SHA512

74917bfcdcedc5cedc57893c39d8f72402ee65488ea4f370d1509ecf33614329a07a2b397b5fa22e91c41e6b8781252679d36c6fc5e0c790ba08dceef0a64196
SSDEEP

6144:j1f98gWNlPTGQQm6agrdusVb9xnzq9WZofm7JTLdCLHTAt36KdYD49oaMrqDbVyb:j1eNtTirdH9wpfm7hMLct36VlbOXwBB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71b6e8037783bf832b4b97c2cdbcd239_JaffaCakes118

Files

71b6e8037783bf832b4b97c2cdbcd239_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.doktr
Size: 145KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 288KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE