c088bb997bf1e971b551ea2a7dd5cddb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c088bb997bf1e971b551ea2a7dd5cddb_JaffaCakes118
Size

44KB
MD5

c088bb997bf1e971b551ea2a7dd5cddb
SHA1

f58901214e60ac95cfff514368f334ecf66caa10
SHA256

94e2aa2fde43de331fa18d8496ce01288a5d5672789f58e5305a9efc7e950ae7
SHA512

be0b5f77588f8acf2accda8e6312fa1cfe07a9265f2df1302b83a33c5ed39dfb5628c738538fb25c904530d9af83d2a0ff54ae1e1fd911dbb5309311e363f77d
SSDEEP

768:D85GAxc5F3GFeSuZtXbWt6ZQNFR/XWSvZmi:D8sAxI2DuZZWt6ZQNFR/N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c088bb997bf1e971b551ea2a7dd5cddb_JaffaCakes118

Files

c088bb997bf1e971b551ea2a7dd5cddb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_SYSTEM
IMAGE_FILE_UP_SYSTEM_ONLY
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.TEXT
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA
Size: 832B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.r2rc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.s3od
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.EDATA
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.newIID
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE