d3f304a629fd69af3be1de311a0d90fc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d3f304a629fd69af3be1de311a0d90fc_JaffaCakes118
Size

788KB
MD5

d3f304a629fd69af3be1de311a0d90fc
SHA1

23fe9972c2cd4384d8d96133e0ad6055ee7d1fdf
SHA256

b6d125384ba34f98bc95b0fe69165a82b9a8e015b2bbeb9c950a7e73b1365894
SHA512

bac7ca473a87d54bf3726aeb7e94a90ba9ebd5b869c638703ff8a012d9292476993cca69dee954e158225c749714e81a69d03c07b7d1b6d87e17c2888f1b1d6f
SSDEEP

12288:OLc/FNnvlUAO5FPxjwY7m1gtTCIUlVW/DsP9RwEFCvKpj7bs0vMLbh:OGaXj50dSTCI4VW/IPV1vSbh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d3f304a629fd69af3be1de311a0d90fc_JaffaCakes118

Files

d3f304a629fd69af3be1de311a0d90fc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 37KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 680KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.HACKNRZ
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 550KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE