d1cbbbf962b7c27b82162c1aefe44cc8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d1cbbbf962b7c27b82162c1aefe44cc8_JaffaCakes118
Size

1.6MB
MD5

d1cbbbf962b7c27b82162c1aefe44cc8
SHA1

410d468b4b2ef47205a75c44c04e226e539be1f3
SHA256

52f379595c63aa8dde704dcc9451b2b550d402525968986e9a9d6eec0b48bc6b
SHA512

7e867d9efed9a78b599791e8bed9ddc6284b496dc20ed6dc087c1aaae3c111889c9f6d92286846712c37087b55c256947d9152200b7bdb327ec681f4f0e8c559
SSDEEP

49152:Fmu3gm44h+LhLI+WOTtLzc6qxF9yRnoeQt/H0d8SBo:Fmb4h+hJWO9e9dtceSBo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d1cbbbf962b7c27b82162c1aefe44cc8_JaffaCakes118

Files

d1cbbbf962b7c27b82162c1aefe44cc8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 313KB - Virtual size: 704KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 467KB - Virtual size: 944KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 883KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE