db42958f1955279ec0bb0b5183374b66_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

db42958f1955279ec0bb0b5183374b66_JaffaCakes118
Size

685KB
MD5

db42958f1955279ec0bb0b5183374b66
SHA1

948f3d96f61f0c08a0310bb9db449cea61789293
SHA256

25a13feaa75e7ab84eed098db7f1029c044da2c451416bdc8e08624e368e5928
SHA512

e61e483de49143ff1aa10df15eddf9fbe01c08db8a2f6d46fe0480974a841dc7ba88bc64daf9d6aab2b3645c864bf2afc7eb01adb4d42f9811940ce3a402f4e8
SSDEEP

12288:tQzZibxN4sB+8HxggLDX1cyPkNAIY7Ebn/SR66uRcTM+kLMyWHDd/s:izAbj4sBXHWgLDX+EkE0aR66uBR4y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db42958f1955279ec0bb0b5183374b66_JaffaCakes118

Files

db42958f1955279ec0bb0b5183374b66_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 239KB - Virtual size: 568KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

w53sk045
Size: 37KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 31KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 149KB - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bm6olccv
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hhi.jblo
Size: 180KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE