bf2282734ed0a4c431a3fa97edab3958_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf2282734ed0a4c431a3fa97edab3958_JaffaCakes118
Size

3.0MB
MD5

bf2282734ed0a4c431a3fa97edab3958
SHA1

416732e0a1f0337e861b0143b6c730a6e3345a32
SHA256

240771841bff819fdc9a956135c21953ef99f2c9b59a4df645a86a5f6ac68f31
SHA512

651e2a16dfd80c5d29af906802bce338a8942cc00354618246dbe1dadd84f36bbdcd1957e4c14880a64a23147659a4593c4385938ce8d5c8c5b2045f7b78c0b7
SSDEEP

49152:nJGBgZ5vrhGTwIpPoLdTn2pb9LyZhTCkfET4xKxDqXJKsyh0DreNPS74JMh:gK5VSppPoLdTn2LWmsxEn7NPSUJMh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bf2282734ed0a4c431a3fa97edab3958_JaffaCakes118

Files

bf2282734ed0a4c431a3fa97edab3958_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 73KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.yvs
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

..
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE