73979384e18fc934ba59b088afc598c7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

73979384e18fc934ba59b088afc598c7_JaffaCakes118
Size

745KB
MD5

73979384e18fc934ba59b088afc598c7
SHA1

8ea4fa8da6911ba5b9583f9850268d6d9f1f7f82
SHA256

645258abedfb7ef87913f3247f07b2e75e4cd41db8c3bd5550fbd0b71412754d
SHA512

701029dd9c1fce023d4a61557481f936ddf5e67a6be296d75a3b185f903730c081f59b6667d7bffd712add052e767988c6e6aa034b91276549103a76b5945e5e
SSDEEP

12288:SPrtHqeOCNLF7Np8XcrmIu5c/HDIqedWx81/ZBKNEUfpDY6AQ/YhNw6mTy6b7MPB:SRKeOgF6guO/sqBW1/ZwzQhKj7MP+h2b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73979384e18fc934ba59b088afc598c7_JaffaCakes118

Files

73979384e18fc934ba59b088afc598c7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 40KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 225KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 384KB - Virtual size: 920KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Rona
Size: 90KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE