d661e68da93dfc27268658cdd5413c72_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d661e68da93dfc27268658cdd5413c72_JaffaCakes118
Size

19KB
MD5

d661e68da93dfc27268658cdd5413c72
SHA1

441ea366559e36a82dfef221f9a489be4851f59c
SHA256

d9517f2be7a4626ec29933ebbffa0656013adbd931150062aa88c17bfd6f2394
SHA512

3e7847baff4d1c8e029308d8e7101cfbb1a47a015dbce3f82f89d8e45a47b723b73a4d30cfee2a9a852a3b85a8d46ec3abb3f87405805aada6705525bfb16092
SSDEEP

384:mDiWnkWMmP4GOumDGk0p9A8GyraamxxoLT5O1o2mXTDO:gjwFL0p9AumxxoLj2E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d661e68da93dfc27268658cdd5413c72_JaffaCakes118

Files

d661e68da93dfc27268658cdd5413c72_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

9^Xf0
Size: - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

9^Xf1
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

9^Xf2
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

t8GVFrt0
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 524B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ