889f02d585e62fa6e1a6d1cb80d952be_JaffaCakes118 | Triage

Sharing

General

Target

889f02d585e62fa6e1a6d1cb80d952be_JaffaCakes118
Size

61KB
MD5

889f02d585e62fa6e1a6d1cb80d952be
SHA1

3980a32e09823cb144237e368a00b266c94d9974
SHA256

45888b41214b7a9da67bb94bea38eb47cc0c73778a2e08a7ce8d835797e13aed
SHA512

adfd2044fa9a47b13e9d2759e628c9ed99dc5b1b2b58de8021d3b2c3854ba1b7bc59cf1380b9e4f2f4f61971e35a960b4768ef79e61cab3c21a70a47f0aee290
SSDEEP

1536:BX1hFxqX+F3isOhMqEgpjwdUFMOUgHluFRR2t/0S6:Z1hqo3HqEg6BOUU8FqH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
889f02d585e62fa6e1a6d1cb80d952be_JaffaCakes118

Files

889f02d585e62fa6e1a6d1cb80d952be_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 188B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 19B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

WCALab
Size: 64B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Sunzer
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_WRITE