b4847822d2964d6da947a8cf53379a03_JaffaCakes118 | Triage

Sharing

General

Target

b4847822d2964d6da947a8cf53379a03_JaffaCakes118
Size

136KB
MD5

b4847822d2964d6da947a8cf53379a03
SHA1

826c040c03c3d2058f4f1bc8d87b1b549113db65
SHA256

5811aec1d9c1ad26086e7bf775642e0539f73c539f45ac63df5098b93f0147e6
SHA512

9351ba1215a897b3e3edd7da7734573c70a7973a53321cbbce75dc28e9754f2bf5c005619d78dc25d6188bc93918a8a97ddc2f244a09cdfe3f39c129c31948b3
SSDEEP

1536:Lex4Iw+b8GG347meo44/TQOo154HsBsNsPF7K9vliD91t45PhJRlpXk5w:0Fwkm347zWUUYee49w455Dww

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b4847822d2964d6da947a8cf53379a03_JaffaCakes118

Files

b4847822d2964d6da947a8cf53379a03_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.bss
Size: - Virtual size: 128KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.packed
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 65KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.loader
Size: 15KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE