b95b4cb20e6ecb19bc3e384f4545f720_JaffaCakes118 | Triage

Sharing

General

Target

b95b4cb20e6ecb19bc3e384f4545f720_JaffaCakes118
Size

507KB
MD5

b95b4cb20e6ecb19bc3e384f4545f720
SHA1

41b1b2bf8ad8765566c60826616e7e5632b301a3
SHA256

4f9382a86203c6e90316636a3c3b504bdb180094cd3b1d5c9e82ca551fcb0cc3
SHA512

6c814a25793ea3e76f08b3bcc4b6846faaca344b3d638d056da09a00f1c7e41cbd656eef4cd942862c94735bc011e287bd24fd9c43c51cd0b03fba12c8341efd
SSDEEP

12288:9r4wWFv1sorCwWbhaVDlWXw3ayPmvMvEmVrtBnQy+QBKJfy:9MwKvqoribhaVDduvc7+vJfy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b95b4cb20e6ecb19bc3e384f4545f720_JaffaCakes118

Files

b95b4cb20e6ecb19bc3e384f4545f720_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 1KB - Virtual size: 696KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.6gcssx
Size: - Virtual size: 520B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.2e2$5m
Size: - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 501KB - Virtual size: 504KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 64B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE