96df8e1f57089c4993b8c4781b191ec4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

96df8e1f57089c4993b8c4781b191ec4_JaffaCakes118
Size

451KB
MD5

96df8e1f57089c4993b8c4781b191ec4
SHA1

9f4ccb5080a20a3106f2915837c79b4ffe289fe0
SHA256

bcc7e5e68aaff008dc05269003cd3f2625005d5a2ba19e5bd2f7d5d18f192bc2
SHA512

3ae9ce57f8bad403d30bbc388fa3e6fb81e380300d33eae24271b2df5ec90a58e707b663bacbfeb39876b3d27c7c354a2af976dfe49b562819677a4248a5c22a
SSDEEP

12288:p/a6/aSX4rbPvEKFV4xRMsTwfC4NPyCCkVazDm2/m9:p/a6/aaEXsp6NaCC4aza04

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
96df8e1f57089c4993b8c4781b191ec4_JaffaCakes118

Files

96df8e1f57089c4993b8c4781b191ec4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.brx5$7
Size: 1KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jod9rg
Size: - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.7x1ewl
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pe2yv$
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bc3ptj
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$pjaap
Size: - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jolvqm
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 294KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.null
Size: - Virtual size: 3.0MB

.bss
Size: - Virtual size: 408KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug
Size: 384KB - Virtual size: 388KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE