c2273e6e4ffaa28fd5f610ff10580c43_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c2273e6e4ffaa28fd5f610ff10580c43_JaffaCakes118
Size

195KB
MD5

c2273e6e4ffaa28fd5f610ff10580c43
SHA1

d2ab389ff123e1f035c5892c121e41240fcf1f42
SHA256

0efe8ba5def107f8849b4115ed3b6fa9d6ce2176452a5b1160bbd5718dd52714
SHA512

196e494167c82f5c2b0c8b3c27c521a345cab5540a43da413b6451858300654d272756e565f0283401dd06851da3f06e076bbfb799b84d1b23129bc00b724abc
SSDEEP

6144:bWEM/b1DOxiVHpzpyvw7kRriSMSPLUKIRhC3p:b7M16EHyvwyriSrLxwhCZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c2273e6e4ffaa28fd5f610ff10580c43_JaffaCakes118

Files

c2273e6e4ffaa28fd5f610ff10580c43_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.weit$l
Size: 1KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.t623ai
Size: - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$4895f
Size: - Virtual size: 11.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.q1rk2j
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.q50$p6
Size: - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: - Virtual size: 3.0MB

.packed
Size: - Virtual size: 448KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 192KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE