b591e4e251df3443faccbd705cd0a27d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b591e4e251df3443faccbd705cd0a27d_JaffaCakes118
Size

1.6MB
MD5

b591e4e251df3443faccbd705cd0a27d
SHA1

6f35155e5d8562278acdcbb7074f67850360ba8a
SHA256

16833d7a857e5392406ffd02caa60c0a7c58e844fb15f09a063ff64c609939fd
SHA512

8d249c0435ec523cb82a1e1d4836243a135777f66d2ca290ebc3f6f426bee048d0f641928f8b717f147d6f5e995b90cddbcbaa2c143963e1d231e95766909856
SSDEEP

24576:ECPaCXSyY6QW5AohAbuH7Vpkg2/xFXNDUx2I3EswDJEVbHEtdTqSex:ECPNZppRp0xjD/uXwFmF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b591e4e251df3443faccbd705cd0a27d_JaffaCakes118

Files

b591e4e251df3443faccbd705cd0a27d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 68B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 326KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ