d64320c3a23747df346ed8a6ef0744d7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d64320c3a23747df346ed8a6ef0744d7_JaffaCakes118
Size

306KB
MD5

d64320c3a23747df346ed8a6ef0744d7
SHA1

4e1c0f034680805adc6f4014140bf12a92aeb291
SHA256

5a32b5d474a1a1c97afda6af7617c554f78dc4c387597cb4fbaad10a8f45c228
SHA512

1f0bda052e80196694d3ee4a136bb220acf766559692837f6da8f1584b764848fbae3f93d45258b6145befcc21bd96a8c01d027378b98167c610430ba0f7f480
SSDEEP

6144:6DrjX5cU1OFdSiYmtoqweydm5t02aJrhkGQOEScl9sU6kKu:6DpludS/myHdmoLr7QBZLsU5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d64320c3a23747df346ed8a6ef0744d7_JaffaCakes118

Files

d64320c3a23747df346ed8a6ef0744d7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.yy622j
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nmuzhd
Size: - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.loader
Size: - Virtual size: 3.0MB

.tss
Size: - Virtual size: 420KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 96KB - Virtual size: 100KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE