bd327a9fbf56a0e027934b438a2fc991_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd327a9fbf56a0e027934b438a2fc991_JaffaCakes118
Size

394KB
MD5

bd327a9fbf56a0e027934b438a2fc991
SHA1

c13c16a14ac6189218ead12c247012bb0495e41f
SHA256

fbd1b7a2738af9d83beb83664c454bcb44c39057e699f2dc90e96f6594c2849f
SHA512

d8e35ef92cac9d1f259d5bb902884bc322162e7bea88ee6db18ea29b4be48644cf90745e2d6e5d72e84f8a57e79a14228939f12afa2b20c3f3f512bae6ba0e75
SSDEEP

6144:odc1xX8DEyn9Mp6pnHJ94zmpurO37HTKetOweNS94TgnNTWw210yaCOpc+6M4WXT:odIVy9o4H/7bHreNe4TL910yaxphPXD/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd327a9fbf56a0e027934b438a2fc991_JaffaCakes118

Files

bd327a9fbf56a0e027934b438a2fc991_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ