735fffee96ffc300602b8be7b9c53952_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

735fffee96ffc300602b8be7b9c53952_JaffaCakes118
Size

420KB
MD5

735fffee96ffc300602b8be7b9c53952
SHA1

4cda880db2667007175f7eb54a38fc57b666f92d
SHA256

3a628d29d2d5f1ccb87ce1f4dbe30f7aa5740445c3d2f117d1d775d31cb830d5
SHA512

dfe8d3a61f90d1aa7fe810fe13de1e96b0d939f2776ec9884605f76269099436ce0094e42480b3d9918cdd69d4c2b5a6141066cfa2432e15b6f205a178878b62
SSDEEP

12288:IKw5Q0y0VKlkiV1T8ChetpbSV9ksQ8bE8FJcaGWeABz4:Zw5Q17lRzotpbSv5QiFGWeABz4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
735fffee96ffc300602b8be7b9c53952_JaffaCakes118

Files

735fffee96ffc300602b8be7b9c53952_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 162KB - Virtual size: 348KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 39KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 7KB - Virtual size: 19.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ipro
Size: 178KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE