d1ca668b1c7fadfc20c3b944a707289a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d1ca668b1c7fadfc20c3b944a707289a_JaffaCakes118
Size

287KB
MD5

d1ca668b1c7fadfc20c3b944a707289a
SHA1

f0c68b7ab9c7fd373eeb1e5ad0959ea6ea31bc5b
SHA256

1b21c574c01f79588f2d93e86695ed81f1b7f6357d5f5d5826c38702905ecddc
SHA512

0cb3f3a3fee72c8bdc4f1f20098b53612f57fde13a61623dc1b6f558ca1f099c1e09ef5b47935c4a5c80f081b914dbb9c64cbfaa5f19789483e57175c1b004d3
SSDEEP

6144:PfN11BiFili9frNzKKSLx+ndqSki5ODTl1CnEXEkoZJ8:VBiIli9fr7S18dqSD5ODTenEXEkoZJ8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d1ca668b1c7fadfc20c3b944a707289a_JaffaCakes118

Files

d1ca668b1c7fadfc20c3b944a707289a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 95KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

wnmd
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE