afb0954f44ea6620bc5577a143c2d7ff_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

afb0954f44ea6620bc5577a143c2d7ff_JaffaCakes118
Size

106KB
MD5

afb0954f44ea6620bc5577a143c2d7ff
SHA1

0f6cbd703a7c217bfd7a8b46c53239cbc32c932d
SHA256

6b1cc6fc80bf62372af5b0e261a475419a0ae3e74e447a70b1510052d72f3c22
SHA512

99ad6d8af370df8b72bb00b562bd286f6cbaa4877bc5b8b2f090a2a37179d2298ebd902847167e659dc760d8634a7ae58366314fb7b5d3d762495ff3f1d8c71b
SSDEEP

1536:4aiqH1s+kCtrA2UMT0mTFibDKa1XEx/PrjVmj/LP3DaseTZ/+f/N6dWpLqDvUi:51B31bdBob2QXMxmj/LfDaVWfl6duuD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
afb0954f44ea6620bc5577a143c2d7ff_JaffaCakes118

Files

afb0954f44ea6620bc5577a143c2d7ff_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ