03e307469ebe62c56d8f6cf99aaab4fa_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03e307469ebe62c56d8f6cf99aaab4fa_JaffaCakes118
Size

195KB
MD5

03e307469ebe62c56d8f6cf99aaab4fa
SHA1

489bda79b12adf50ec843bf55203b07c2171398b
SHA256

bf33e3e7107744a4cf33d56cdd9a78679c1e9d59c79f3ca796e687fd2ac66ba4
SHA512

531f9ffda34e73c736080651010b5faa8f1963218ef091c6be37cd794920ee2bfd8a743d02bfe6119acba1b3ee47f94ee401d932c7cc7e40c0a0d0c1456726f5
SSDEEP

3072:UM2hcpdf7Ufq5fTZq0hddju3HBb0l9a6jIhNr9V+XvCKiu+pRNSTjM8:UZcplAi5fN1hjuBEPjIjr7+XviuoRNSt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03e307469ebe62c56d8f6cf99aaab4fa_JaffaCakes118

Files

03e307469ebe62c56d8f6cf99aaab4fa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 171KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 619B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 32B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ