df7331e26d13258d6792eb770e128379_JaffaCakes118 | Triage

Sharing

General

Target

df7331e26d13258d6792eb770e128379_JaffaCakes118
Size

155KB
MD5

df7331e26d13258d6792eb770e128379
SHA1

4154c601e2fb6c3d215f4e434d8525d3e2742845
SHA256

95fd3a0d1e66a98994d39cb2574e291f8583314cf03bc05198d150c93a4e72b9
SHA512

e9dca1ed19c8cd6a8954411b9534db2e53ecf9ef5cf14aefd0dce0531889ced31cdf0d87f6b00e2b27a8e9ab4fd70be7f2eed362cc5b94260091163dcc3c725b
SSDEEP

1536:i7ht54+01oSyjeRVrZzDNpRjuzf4ZKML7RfyYA4pPb/Et3Ki03qJhIa7:O0zTlzrFc4ZnJf/jEt3Ki03qJCg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df7331e26d13258d6792eb770e128379_JaffaCakes118

Files

df7331e26d13258d6792eb770e128379_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

CODE
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.INIT
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.relh
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 132KB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.einit
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ