d736bfb26bd55bc18b68061be8fc88ef_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d736bfb26bd55bc18b68061be8fc88ef_JaffaCakes118
Size

311KB
MD5

d736bfb26bd55bc18b68061be8fc88ef
SHA1

a9ef968895a1dd4d0f7aaff30ca096f899e71aae
SHA256

0d99cfc131a140b98d89730f2253e43c5680dc4b6ccb96b66f428231e65f716b
SHA512

264ed6d561f52e717f2eee71f1ad34f7289384719e2f9acf499aa0a2bbd117f097f43dbff521955bc431bbae5caf37c1e9c8b30f0db2238248fdd2796b1d3167
SSDEEP

6144:0/uffOCuQRZstFxsdl9gk96bDMe2mqVUNudSNbza4xh:0mVnRZsidlN96P49WhBWEh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d736bfb26bd55bc18b68061be8fc88ef_JaffaCakes118

Files

d736bfb26bd55bc18b68061be8fc88ef_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

ZCode
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZCode
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZCode
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZCode
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZCode
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ZCode
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

ZCode
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE