bf40c1e07ad6e1dd395466a1e463a1f5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf40c1e07ad6e1dd395466a1e463a1f5_JaffaCakes118
Size

364KB
MD5

bf40c1e07ad6e1dd395466a1e463a1f5
SHA1

1f1f926180ba5e9f7586e9c57a48ab3fc81ddc21
SHA256

5743aeea9de683ddd389c0a9a2257febfa82e3a3a32167a517455520d1100122
SHA512

728cad062e15cd73a3aceb4657a3fd5863a45617b6c1cd8916ae9d9da1e87e93b9bc9779a515e36a9bb107adae4337329cc30cf4f7e454a91e0995e1570a4f25
SSDEEP

6144:U8jQHYALQvZonHR2IXQrgG9577YT6j2BOII/fLKeVhtjFFP/KMw:U8UHYk6ZuHRDArl9x7YT6j2BOII/fLxF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bf40c1e07ad6e1dd395466a1e463a1f5_JaffaCakes118

Files

bf40c1e07ad6e1dd395466a1e463a1f5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 276KB - Virtual size: 275KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.trace
Size: 4KB - Virtual size: 755B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ