739e50982bf0e5d01dadd3dec1be59d5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

739e50982bf0e5d01dadd3dec1be59d5_JaffaCakes118
Size

184KB
MD5

739e50982bf0e5d01dadd3dec1be59d5
SHA1

31b7c95c851dc98f36067ad4bd12e94d93f99d90
SHA256

53191987e9cfa825edc534f17e7031ca1f63f7c576d80bcb2469713afb0500ba
SHA512

575ba1f3cd14ee6833c2f381ef0a862682e8e4e5e8e45a6d3f15f400382b6ad8d5142f9d269a7bc07497600f9d316fcc92dc3ed1140985d4b07f26c53987ccbc
SSDEEP

3072:4tGxDSIBNmyaJlGy5P45byZFMNRxQwL/3sVMnhtmTnx+6Q4PDcmNEnKVQTE2sBZK:6GxP0yanGy5EbyDoeyhj6PPDcsE0bLBQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
739e50982bf0e5d01dadd3dec1be59d5_JaffaCakes118

Files

739e50982bf0e5d01dadd3dec1be59d5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 119KB - Virtual size: 251KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 22KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 13KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE