db0640ff0f78d28788d923c5f1932254_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

db0640ff0f78d28788d923c5f1932254_JaffaCakes118
Size

27KB
MD5

db0640ff0f78d28788d923c5f1932254
SHA1

d96c43c1e4cd1519f923f8ae0ac052f61ddfeb1c
SHA256

91b991763aacd0d6ba00a2cbf6a392d2db1cacf237a52a1eca4bcd7fe439fa4e
SHA512

29109cbdf4055d1c8a4845d0132ff44e8a04925c26d4e8294d2d93be811459bd949e0821b097e47fd623686e71cd60b994aeeee35eebc6c010b5918f92601e4b
SSDEEP

768:Tl2Km2qrQT2GaWdQWMvn0kgVfcv5IjswVYz8R:EKZqrQeHWfjfcv53wVYz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db0640ff0f78d28788d923c5f1932254_JaffaCakes118

Files

db0640ff0f78d28788d923c5f1932254_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ