c1272bfb2f0d2e0b26a92efa3ace7664_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c1272bfb2f0d2e0b26a92efa3ace7664_JaffaCakes118
Size

461KB
MD5

c1272bfb2f0d2e0b26a92efa3ace7664
SHA1

df1776d774903776d2a0bc3c5a200acefb3d7469
SHA256

1be784d7039778a51e87fdc2687a4bb76247f3f155a11e346651ec3448702b87
SHA512

57dfca7fd039726298e9a0e0cc98650f2ecde2680a3e5712d097f948d11b56d1fa2d7536809f66f213b1b5bd849401e07d99f34a5f35df8aa11ac3b7e655f64e
SSDEEP

12288:MfbDAyBpAwiqosn9EnuAzhwudy26jc7W/VVc9AL:MfgyBpAl2B4hwudyzlXoO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c1272bfb2f0d2e0b26a92efa3ace7664_JaffaCakes118

Files

c1272bfb2f0d2e0b26a92efa3ace7664_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 166KB - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 882KB - Virtual size: 881KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pusucxwd
Size: 994KB - Virtual size: 996KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hgadzawl
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE