972c61e5376327704832314a9bc7d908_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

972c61e5376327704832314a9bc7d908_JaffaCakes118
Size

119KB
MD5

972c61e5376327704832314a9bc7d908
SHA1

839003bbbb098e030214e74094067bd11b01fc31
SHA256

c709ef91ee496920de6e0a9b6af5c4313febb2f2a37948acd666e05c04b621ff
SHA512

aedf0bec6eec319c2b855e9595b6695aeb050626f313214300cefc8be4f9aa51b29ebb031fc69a6082cfa76dd89dcd69e86895b7b1446b666065c46b7546d452
SSDEEP

3072:IuYfxjOGFNwt/ZrNQ+7Ad0kktf9GvoZhTHA0gZbXC9EF:IuYZjXwtxi+7AdqgZbC9W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
972c61e5376327704832314a9bc7d908_JaffaCakes118

Files

972c61e5376327704832314a9bc7d908_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

obsvyxv8
Size: - Virtual size: 208KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xdxgigr
Size: 116KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

v4g5sc79
Size: 2KB - Virtual size: 810B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE