970deb81c9352b83b3136a1e320b1150_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

970deb81c9352b83b3136a1e320b1150_JaffaCakes118
Size

15KB
MD5

970deb81c9352b83b3136a1e320b1150
SHA1

eebdd28d8ce90b8d3937014f0669db5d2a319fe5
SHA256

bb7a7039e5c25612116c87e5e619c1a89c9b086d9a0e7b2ff9d1e50f37fed9de
SHA512

ba90838a310288c04180112db456bb077f7b3eef950167b964cc6fd52b581e2ddea40d3d59eea9b4e2c933f0d86e56b8dd2924c30d20d9c33cc10f58e0febb03
SSDEEP

384:mm8jdIVhrsOLbR6h7pgLv9MYTAxeKZr3C5ngxSFaQ:oKLrjREFgLv9hNwShbb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
970deb81c9352b83b3136a1e320b1150_JaffaCakes118

Files

970deb81c9352b83b3136a1e320b1150_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.shield
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE