71e6722c43609a4af05e9161261cbd35_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71e6722c43609a4af05e9161261cbd35_JaffaCakes118
Size

214KB
MD5

71e6722c43609a4af05e9161261cbd35
SHA1

6fd2925f002206b9cf3bcb91b32d97ffb3af5c50
SHA256

8d2032fd5477bd2aac17f00110e463d6d77d316e81b14ef6da4ccb1f9e15ec72
SHA512

bfe7e284270107a17dfa7c38862f792586e8ee8d3c825bfd94a6232c1f605c8a31f32f7176a3cbe3da7f3d24c23d594563e26297c0b35b6f1ec22f934c1c5f17
SSDEEP

6144:KAlNqtNBImouJpOCXQ8QPyZO4DqZtRVup8:KACNBItWbDqLup8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71e6722c43609a4af05e9161261cbd35_JaffaCakes118

Files

71e6722c43609a4af05e9161261cbd35_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.data
Size: 201KB - Virtual size: 620KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ex_cod
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ex_rsc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.shield
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE