76b2ed36c406ef16627d84873834a54a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76b2ed36c406ef16627d84873834a54a_JaffaCakes118
Size

413KB
MD5

76b2ed36c406ef16627d84873834a54a
SHA1

bc7795709355478093256317d2f516a8c3abcae6
SHA256

973a8c017345c847ef27c04a9c8483f1b4d3efea8e19ea5e22f3f1e99885d46f
SHA512

b818c45c4d364b31580c67eae91654f23a2fa7616f72c57b31c35455853a2615eaa27d6b3678955ec064baf686bbfca64ea5695d4c6a4a9d5a234a5965bc6a45
SSDEEP

12288:H0lLQ4j5X9dnNRt76URlqwoQWUtPTziWqZ:H064j5XXNmEW+iD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76b2ed36c406ef16627d84873834a54a_JaffaCakes118

Files

76b2ed36c406ef16627d84873834a54a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

\Hrp0
Size: - Virtual size: 900KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

\Hrp1
Size: 405KB - Virtual size: 409KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

\Hrp2
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Fi7ke
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE