bfe7cbea1e565ec768b48ae13d1bade2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bfe7cbea1e565ec768b48ae13d1bade2_JaffaCakes118
Size

371KB
MD5

bfe7cbea1e565ec768b48ae13d1bade2
SHA1

1a0ed2a69ccdb9c460291ca62c30221a7f6cc07a
SHA256

5850d21df401c4589521ca9c1edf11f6ab08a54aeea076d96a369c1ff2d97a29
SHA512

19d8203fd374c3669a2f95052c830b2b9a8cf95058b0533a10a016dee69f72506e84e76a1aa0be15edd2e41e2302a01d6fa35c2b61caaf4b075b4424f9c59c6c
SSDEEP

6144:7/CI38oRQR+3DNnT2SOxvOf0oqCP6ZfLRM2MIzJskJ7wYsv3+R/KA9MqZNL:7xRQR+TNnT2jBOf0gP6dq2H6kJ7wYwCL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bfe7cbea1e565ec768b48ae13d1bade2_JaffaCakes118

Files

bfe7cbea1e565ec768b48ae13d1bade2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: - Virtual size: 629KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 20B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Fi7ke
Size: - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Jiaozhu
Size: 370KB - Virtual size: 372KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE