bb0952c714ce0e0cbe88e44846eeb075_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb0952c714ce0e0cbe88e44846eeb075_JaffaCakes118
Size

434KB
MD5

bb0952c714ce0e0cbe88e44846eeb075
SHA1

9f5e4e90a19342e88479bfad7d5bd77c17d6738e
SHA256

1008baf33e3465bde4c3476d2395ec9385737331ec40cffd061d0033e35de34e
SHA512

e86204185116f073bee8b95e12d4e2d1c3ecc9b4437524ac0e57527042695874ce4101429d5af46cee2ea6a313afc6c5af5ab4e1a757d5b3c98b5906a6308b23
SSDEEP

12288:JSJBI68hl7vqlS+bcEiHToq/xMCL5jOpjwBt:JCI68I1p+KkjYwBt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb0952c714ce0e0cbe88e44846eeb075_JaffaCakes118

Files

bb0952c714ce0e0cbe88e44846eeb075_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.brsgwk
Size: 1KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 286KB - Virtual size: 286KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.debug
Size: - Virtual size: 3.0MB

.edata
Size: - Virtual size: 440KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.null
Size: 122KB - Virtual size: 124KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE