970f7e7e5a851150cd3ba2126db38326_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

970f7e7e5a851150cd3ba2126db38326_JaffaCakes118
Size

991KB
MD5

970f7e7e5a851150cd3ba2126db38326
SHA1

8a663150a41b118db362209671e8bf2f7a440d57
SHA256

5b68c5826bdf007aef8ca47047bb280a713d01a4648786acc2f53b595164d912
SHA512

b602542068755853794697cd3a910959b17848a34502575ee3832f7abe41ada9fb77d68de3aa4116cec2684ec5ac3e864e7d080bf2069b529dc32331da533618
SSDEEP

24576:2D1EvTFtLmGhEOiRtJ6u+CB/vY1v1Ripqg35XLDvr1kff:Lxt6GCUuNBnmv14nDKff

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
970f7e7e5a851150cd3ba2126db38326_JaffaCakes118

Files

970f7e7e5a851150cd3ba2126db38326_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 12B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 262KB - Virtual size: 262KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ