c7c95ea594f8c435a0a209cb138a3258_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c7c95ea594f8c435a0a209cb138a3258_JaffaCakes118
Size

1.9MB
MD5

c7c95ea594f8c435a0a209cb138a3258
SHA1

26a4dcd4dc8e2277fe0fdde5ab320db0e5b8537f
SHA256

453d234b3fc17b5c0e353e0d173292bc83afa27e3b2ede358bdca8b5e0275304
SHA512

8d6d4b9dba73b94b8d28f0454f09681a732728d6a95e0cb620a4f1b93d62734fc37cef9348b4b06911bb1e9eedcd1aec597d4f1e4d3b587fd53d1327e30ebc36
SSDEEP

49152:PAjJTXIRd0jTI3U68VXBO4mYQnBJ+JKv6L0eS:PAdTXIMjTTxVRWlnBJ6r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c7c95ea594f8c435a0a209cb138a3258_JaffaCakes118

Files

c7c95ea594f8c435a0a209cb138a3258_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.sforce3
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.RSRC
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sforce3
Size: 391KB - Virtual size: 391KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brick
Size: - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.start
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brick
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE