b0f73ca5024e863a3733a29e6cc6a33a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b0f73ca5024e863a3733a29e6cc6a33a_JaffaCakes118
Size

38KB
MD5

b0f73ca5024e863a3733a29e6cc6a33a
SHA1

99344d43e313a3806b7f6cc551795a7aa2f3586b
SHA256

8186d462fb84e3175dd20cc7d202c4a0ea545db8a590907100fd273983805f2b
SHA512

e2e08eb3d63552f4d09e20c1c3f7da757bfc01caf39d8d0eb271bdf471e5638a9764d53f9bf6ebf8542ecfda17f7480e3d0021b65f57cba51b53c999e519e077
SSDEEP

768:4T8nsdOvSykDFKmaL56+5gScw9x42faq5beD:4u2Ovq5KmaLo+y89xN1S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b0f73ca5024e863a3733a29e6cc6a33a_JaffaCakes118

Files

b0f73ca5024e863a3733a29e6cc6a33a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.code
Size: 32KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PEPACK!!
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE