d00a55bb59b37ca8ee4dca2869a0f45b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d00a55bb59b37ca8ee4dca2869a0f45b_JaffaCakes118
Size

297KB
MD5

d00a55bb59b37ca8ee4dca2869a0f45b
SHA1

980e89a480ece0ef1d338c1aada3e42f1222ccda
SHA256

516203876572b024cd41d2736f47c7a80e628e80f73f5582acf564dbd85e6065
SHA512

8424bdf3201e1c733447ebd19f6f13be901eb11874029783d433f9c3185fb9a7d7715c4b7a44179f787eab5629b79a8cbb6449893863a730088480fb737eda53
SSDEEP

6144:PtQd8TGrTnvYsb19bY75atOOleHGjS4eHAt6GOCrbYb4PFsLB3oQt0WUS:Pud8TGrbgsb/ggemUC9rbYkPuWMTZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d00a55bb59b37ca8ee4dca2869a0f45b_JaffaCakes118

Files

d00a55bb59b37ca8ee4dca2869a0f45b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\project\Churrasco\Churrasco\Debug\Churrasco.pdb

Sections

.textbss
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mjg
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE