d1062a8e6910266e8451235c28609587_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d1062a8e6910266e8451235c28609587_JaffaCakes118
Size

767KB
MD5

d1062a8e6910266e8451235c28609587
SHA1

1058837af523c2fff235789642a55f0b55e78378
SHA256

a68cd52e09785510c5de1a1558017485272ddaac2692f89430248089918743e0
SHA512

b4b9090072a0a4ca16d1b69abc40d12feef159ddb52721260ea3e7f44190b67818c505a3dfdfd3cc7128ce054c2cfb2e1c6973ec4384db2399267e375cfc868e
SSDEEP

12288:ToMNElzEUFu53rlnYomTOM2VDPztzYr2mlg+t36UW6NQ2:Tovdu/ncTDMPz9md3W6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d1062a8e6910266e8451235c28609587_JaffaCakes118

Files

d1062a8e6910266e8451235c28609587_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 564KB - Virtual size: 564KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ