d63677ed432a936f34479bce039dd01d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d63677ed432a936f34479bce039dd01d_JaffaCakes118
Size

793KB
MD5

d63677ed432a936f34479bce039dd01d
SHA1

2bd79249cd03fb2442357f40f4f0baec02c734c7
SHA256

82c7c5b27dd9d570b7d1de160aa4d089d9c07e1c9bbe3d8afca3c7ca6edc2c74
SHA512

186e347b7bea9bee0b58a3602b93f90ff54bcb0aae8c0a15ca077156f2175615c5dad499bc5c5b9481ff0f4c1c322887301e24d11082561dfd90d6fe672ad385
SSDEEP

12288:9cfJleeDzwso7HSUoP/ROnLFncCY1jMDeLW62xsLluPDR3ezw4c:eJleeDzwsomrP/snaPMKb2xsAPDBe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d63677ed432a936f34479bce039dd01d_JaffaCakes118

Files

d63677ed432a936f34479bce039dd01d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.code
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 759KB - Virtual size: 758KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ