d0b4bf10ee8d4e788e25acf529c432a0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d0b4bf10ee8d4e788e25acf529c432a0_JaffaCakes118
Size

117KB
MD5

d0b4bf10ee8d4e788e25acf529c432a0
SHA1

f2af7bd8bd2a69771b7f28db794d439a7741c819
SHA256

a916b4cfaddf89f7d3b5272e48559c61959223d624736073f1a01665258975e6
SHA512

303fb1f329413ca122da12b5593833fff01fc105584405194dd5a2b6934feb2c4cd401dd6368314e4778082cc50af9ad2d297e04afbe81290d7937de0c7c2196
SSDEEP

3072:iBUktY6qhVmWAi+GMM+5B5G+ZN2ixELja:i6kythWxGk9Ei

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d0b4bf10ee8d4e788e25acf529c432a0_JaffaCakes118

Files

d0b4bf10ee8d4e788e25acf529c432a0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

ujx52
Size: - Virtual size: 208KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rf8
Size: 116KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2
Size: 904B - Virtual size: 777B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE