d6e42a834a4b28b321cbf31bfd613387_JaffaCakes118 | Triage

Sharing

General

Target

d6e42a834a4b28b321cbf31bfd613387_JaffaCakes118
Size

2.2MB
MD5

d6e42a834a4b28b321cbf31bfd613387
SHA1

4c76bad74d1701dd631fbe25f92ee603e5b4344f
SHA256

151d0104df94f9b66033efb1c6c1e8d017b73c93f0db3a2f41db9a95b89f83da
SHA512

8522c550756deb932eabd0d961dd73f6a276d254fbee414d98e5a99634d34009943417cb83c3826681eac8e3061c279b72b556be8de11add8d53368750e76da2
SSDEEP

49152:avtnrMEb8Nws1NzhF6LIhCP+JFLdZK2jvBsMf:alvMNzhF60CmJ7Z5b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d6e42a834a4b28b321cbf31bfd613387_JaffaCakes118

Files

d6e42a834a4b28b321cbf31bfd613387_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 880KB - Virtual size: 879KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 69.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CONST
Size: 4KB - Virtual size: 31B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 41B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 400KB - Virtual size: 399KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ