71496be0ac045f593d3fbcd712a49f7c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71496be0ac045f593d3fbcd712a49f7c_JaffaCakes118
Size

119KB
MD5

71496be0ac045f593d3fbcd712a49f7c
SHA1

ce261e82516f030a7aa57a71f563128a7a1d5705
SHA256

45c989d2d8a6a3d96f5aa57ee23d3e8c593aeb829a0df70e4232abc3d123ee92
SHA512

2fd9d9df98f1c97942d417f846aaa2b1df888f4ca0f879b7b2fca1293f58fd6d8ed46f158ebc5715b759b2953aedf26363a63a2143410b243c380069d3e72583
SSDEEP

768:mIgVKhafcoXTPjbQ6tF2l5R/O2ucm+2b8cYGiSSloAR9PgB9hJ:VWPL21/CFbxjAoIg9f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71496be0ac045f593d3fbcd712a49f7c_JaffaCakes118

Files

71496be0ac045f593d3fbcd712a49f7c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_SYSTEM

Sections

.scpack
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TEXT
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.DATA
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.r2rc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.newIID
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE