df57fe0a2f896c5d9576a7b0a838b027_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df57fe0a2f896c5d9576a7b0a838b027_JaffaCakes118
Size

1.6MB
MD5

df57fe0a2f896c5d9576a7b0a838b027
SHA1

f26c40b6949eff4ab01efdd3b5155943403145b4
SHA256

2e31c95c5345c6a77918e7ef24402c4e9c1464486abea519d9c225954109ed3f
SHA512

40dd196e08647dd863c7fd55c5155cb5e757c4c16e46d2c5b1faf5278212cc8c082d893cca85154e70e18fa1a98dc134ff3e17e2c14750fd1b7f9adb1cd4682c
SSDEEP

49152:aU9gH81Q6XwTTZo03izOdWfBOaRPl9CB+KYTK5:ngH81TgvL36O3kPlTKYm5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df57fe0a2f896c5d9576a7b0a838b027_JaffaCakes118

Files

df57fe0a2f896c5d9576a7b0a838b027_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.icode
Size: 2KB - Virtual size: 1020KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 7.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 3.0MB

.reloc
Size: - Virtual size: 432KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE