76803b95b899f40a881987016f5d69d3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76803b95b899f40a881987016f5d69d3_JaffaCakes118
Size

463KB
MD5

76803b95b899f40a881987016f5d69d3
SHA1

3fdacb62cdb2bd1fafe2ef1a2fe42087d3e6ab0c
SHA256

4920c925c542d96221b29729cc4dfec38e741d5127ff4ccc089448ea9dd5466e
SHA512

8bb5d43fc60ab4b46a3110e700f64b2f7c87b15abed980c78c0bb996d970ee7ca2c15237478a016db9d18d5cf2d44e5fe15d97d107904c662eb0ce1e33c793ba
SSDEEP

12288:OhK/bhhMvPiodExbVpbYHzY8FSGjr2fhiwy7fS+:OhChkiodebVpb78AG2fhTufB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76803b95b899f40a881987016f5d69d3_JaffaCakes118

Files

76803b95b899f40a881987016f5d69d3_JaffaCakes118
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 316KB - Virtual size: 316KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 806KB - Virtual size: 806KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 764B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ