d66f02695c4bf472d6ae431b9a48a151_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d66f02695c4bf472d6ae431b9a48a151_JaffaCakes118
Size

139KB
MD5

d66f02695c4bf472d6ae431b9a48a151
SHA1

d7f202dd947416f43f6410e2670efc0605a2d4e7
SHA256

b57bbbb7c3ddf05e6f537b13937795b9cbc1c7b6a1d0be1e0d688fc2b2196b5a
SHA512

8d132981a87bb5629502c4639f90de63c87556656f1ffdf36005b44da7754b666c6e73e596d10be65fb198dec740d68aa42f24405511b236f1afe0359d702dd8
SSDEEP

3072:UpPCgnoQmqljMBLcFHJXBTKHH3fcdsYvv49:UpqgS+jEeJXlK30FY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d66f02695c4bf472d6ae431b9a48a151_JaffaCakes118

Files

d66f02695c4bf472d6ae431b9a48a151_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.fri7qt
Size: 1KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tctyip
Size: - Virtual size: 358B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.1wimtv
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.2gpwna
Size: - Virtual size: 891B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: - Virtual size: 3.0MB

.data
Size: - Virtual size: 444KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tss
Size: 136KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE