c176a691c09d978df4826742be85c8d9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c176a691c09d978df4826742be85c8d9_JaffaCakes118
Size

496KB
MD5

c176a691c09d978df4826742be85c8d9
SHA1

e3a07302a9f2d7384d7871e263c16588257265cf
SHA256

fe152147859978a511e8814d7edc803697bb92089798456b0edc53a94a4c71e6
SHA512

a154b52e122f4a2f61a445e887d9adb362f989f4b922981a6d002cfe4ba22722a8e6a5225ece17a480c33514dded87561fba68708bec1973b6d6bd49ea54f416
SSDEEP

12288:Hh1Ehyn+YYf/cc2z+E1c2obY7LXgzhxJuLewcyb:H3EIJYfV+ocfX4zkAI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c176a691c09d978df4826742be85c8d9_JaffaCakes118

Files

c176a691c09d978df4826742be85c8d9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 71KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 137KB - Virtual size: 356KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 283KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE