b39faa0cd62dd32a5057ba1b8157320b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b39faa0cd62dd32a5057ba1b8157320b_JaffaCakes118
Size

3.4MB
MD5

b39faa0cd62dd32a5057ba1b8157320b
SHA1

af152b5d262f2e7e8e0358042951afad4608ccfd
SHA256

c133191bed238c691abf3a9abdbfa8b3070feae59ff2627ccc3f0e4fcf8faf69
SHA512

3f30c7589ccb768c28c107bbe5c74468fd034ccdd59e994ce0750a622c8bb6b249f1527d4a6c2092791ac447e15621afd3b16440f400fc0bc510f4734e290756
SSDEEP

98304:LoofoiYW29op+p2Q8MaGdsVNTvdnJOJ0DLsPl:sqUopcaesxdImD4P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b39faa0cd62dd32a5057ba1b8157320b_JaffaCakes118

Files

b39faa0cd62dd32a5057ba1b8157320b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Unpacker
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

By
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Loveboom
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.snaker
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE