b878aadc17e3a28b06f80d4d691198b9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b878aadc17e3a28b06f80d4d691198b9_JaffaCakes118
Size

121KB
MD5

b878aadc17e3a28b06f80d4d691198b9
SHA1

4cd652ddf9109d6cebc6e1b6b529f446c1f9eb36
SHA256

d94450ee85e2d9559ef6ad891210b208f40a940a308567666a017c3067411774
SHA512

0c7167b0a49a795a2365631b6cb7b235b0a694d4ee5136eae1bcb5a573566dd4e9392bedcd26b7dd73a9dff7fed4df866ab4bd558d62ecbd0d66695f476fbf50
SSDEEP

3072:T8vJT1uRq9GJSSllt01CXF2LXD7VA7R4R5wRWZy/R:gvLuRsBS3WzpA1C5K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b878aadc17e3a28b06f80d4d691198b9_JaffaCakes118

Files

b878aadc17e3a28b06f80d4d691198b9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 12B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ