d70b5a069832882d21b3a5e57b4f3586_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d70b5a069832882d21b3a5e57b4f3586_JaffaCakes118
Size

792KB
MD5

d70b5a069832882d21b3a5e57b4f3586
SHA1

02cdb7ec5feac034728bf74605d9b9833523c8c4
SHA256

4ec4ca3069d316b8a13a1d3208fcc3ec1ab42282975246fa57f2c254b53524fa
SHA512

95d83e329554f85e30e91983827a909a9ffcc681e8e004c7036c5039ff05e2153b221a5ea84ca40125234e51d457f6778be39326fee715931d5127e998914e22
SSDEEP

12288:v7GcjZ9O2nyBuSujf0gDtUsCpt5+uqTXycLIzsbQEOEzXkeWzWbN42/PTQBjUzDc:6o9OQMsCtcu2XiAbQEO0XUzWtE2zIq+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d70b5a069832882d21b3a5e57b4f3586_JaffaCakes118

Files

d70b5a069832882d21b3a5e57b4f3586_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.null
Size: - Virtual size: 3.0MB

.rbss
Size: - Virtual size: 444KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tss
Size: 134KB - Virtual size: 136KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

99999999
Size: 588KB - Virtual size: 592KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE