74e5973ac2058fa09a13643852e87cfa_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74e5973ac2058fa09a13643852e87cfa_JaffaCakes118
Size

672KB
MD5

74e5973ac2058fa09a13643852e87cfa
SHA1

ce647c4e1946c506c97a5136adce0bf9bce330d5
SHA256

46e4da636972dd2feca8219d48554f8deba454d1b13b83668235c3d3c19b7117
SHA512

d4da248baf53b8873523aa37a6aa174c659605ff3aab9509e05d5f2de92b865e844131a3fc939ab3c446bdbcb3e40b608d9ddab4d1f38ef7fdca4e4721fc7df8
SSDEEP

12288:5na9Ji6GXxK/IgdZ6b028xkfD/dnhg4+Bf5zOqtcvS38LCJQBtdGs1rBLsJ:5na7MoAQ2ao5O4af5zOUkS3rJQBtUkBw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74e5973ac2058fa09a13643852e87cfa_JaffaCakes118

Files

74e5973ac2058fa09a13643852e87cfa_JaffaCakes118
.exe windows:1 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ