03e4a44ba08d7305b81082430f5200e4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03e4a44ba08d7305b81082430f5200e4_JaffaCakes118
Size

1.5MB
MD5

03e4a44ba08d7305b81082430f5200e4
SHA1

a07d7ea67297f4c07992c0be3248ba4dc08eefad
SHA256

2daca576cf442e87d9097043f67e6a9f6357d6e6ef5e1eda0172b8eb5470a2c0
SHA512

37078d0bcf61f6031a420fe9c6ff79f2aa4addecd8007f0e6360b75b4ae9f7c83fa5e43ae89e136bb953a4d25bc11be423c1639804e2f7e3254d0f0487ff9321
SSDEEP

24576:51bLqT7SPzs+s+J8vhkmN9lBqN2ZYG8moGNFz4utSTxzLwryOc5y42k3wZNptnW:5t8izxs88plnDJZXHFkutkLwRE2tbplW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03e4a44ba08d7305b81082430f5200e4_JaffaCakes118

Files

03e4a44ba08d7305b81082430f5200e4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ