c0c81bd70d0100893886e9611251ad61_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c0c81bd70d0100893886e9611251ad61_JaffaCakes118
Size

3.4MB
MD5

c0c81bd70d0100893886e9611251ad61
SHA1

6d8ef32d0b035f1230b4b5e1f3a6fb9155050df5
SHA256

f4ca8bea75425903f688ef4c0c9e34d16835639662c805c0f4c46040a90c2930
SHA512

af0ce8f4b47575a1dcf812c6561259f5a898c61a95a006927f95dfd8a7903befd81847ca6734c30b19f3a5690968343747416450604f475a5a701cec058852af
SSDEEP

49152:C+4QYgAtLnShnl6a0SMfOZnmwUUNdBAA3MjAqmPROx2N9Ab2YN2soxvGeUAUA/JD:CPQYnSJv0benTRRnpcmAbloxvGerq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c0c81bd70d0100893886e9611251ad61_JaffaCakes118

Files

c0c81bd70d0100893886e9611251ad61_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.code
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ