6f48cddf389ab605608c7b816977cf06_JaffaCakes118 | Triage

Sharing

General

Target

6f48cddf389ab605608c7b816977cf06_JaffaCakes118
Size

171KB
MD5

6f48cddf389ab605608c7b816977cf06
SHA1

f9856697224e43be733337207e7be77d4f57bb79
SHA256

aa840288c32f39c7b12cdc3b09e062596c3b00a0e9cd19fb7515e7f51c7cf84e
SHA512

373f2585bb0e8ca1bedea5029eccf74ead8e9fd63b44cdfdc1d567d30a3e7edd3343f4ae5e65c4ba0775b7e32cb979f79120b4823b7a837562ed56ad7e8b9284
SSDEEP

3072:3zLnHrY6VXweh5raUOYQc3uCHRcoPFuDa9ZXCYNgT1G0XGwG:/rYALQc3uCxco9u2PhNgJGb3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6f48cddf389ab605608c7b816977cf06_JaffaCakes118

Files

6f48cddf389ab605608c7b816977cf06_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 152KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

XJ
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE