78ab38297f244bac0da13568e83393a8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

78ab38297f244bac0da13568e83393a8_JaffaCakes118
Size

1.4MB
MD5

78ab38297f244bac0da13568e83393a8
SHA1

1d68d0ccc33c10851b22d2308a65d1e9dc23d0d6
SHA256

b0d05a6d8307a24e23477259aa06307a5d206d613d478d6778e0ffdf78768262
SHA512

15fa8a7656b4cd53ec005cfb83256d899e10616882819280b331a6ec2e794dead8e154ff1d0df7332223eda714d1fb74c408725b5b9beb495433d02ecfa9f807
SSDEEP

24576:rmy9xBm4F51dU07bMgpXLorhbL+mP+2o9lYyZ6g4mq5S+yzPbjtFUq/jT+9GSB:SIBmKHdU07Irh3d29RZ6gqkDzPbjtSqc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78ab38297f244bac0da13568e83393a8_JaffaCakes118

Files

78ab38297f244bac0da13568e83393a8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 275KB - Virtual size: 612KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 299KB - Virtual size: 602KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 905KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE