b05064141445d5decff3db2a9ca70895_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b05064141445d5decff3db2a9ca70895_JaffaCakes118
Size

170KB
MD5

b05064141445d5decff3db2a9ca70895
SHA1

f7c8ce5c70a64f0d77d982a4340bb038336e8d1e
SHA256

83471627051feae065b492405ec81b16dc08ee905e798d6f431dc8a9a7030c42
SHA512

fea0d97a91bba2290129e58bca61acd3f27a4d9e6256c0e9300547e4d96d2583eae96919f9cffc8183308e7d83e48eb51ddbb654224a3f05bd7165e477d59264
SSDEEP

3072:WRGEFKzPdROWQEi5j0hi9io2SimBEm9DtFmc4nz1cMQ4aFf5dQ5GLhWYLXpF:+G6KzlQPjd9BEUcc4z1U4p5GIsF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b05064141445d5decff3db2a9ca70895_JaffaCakes118

Files

b05064141445d5decff3db2a9ca70895_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 151KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nkh
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE