df9154923d5644248b17781a775bde2c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df9154923d5644248b17781a775bde2c_JaffaCakes118
Size

1.2MB
MD5

df9154923d5644248b17781a775bde2c
SHA1

c3bd46449ccc38893f071b2cd696c1f000f85f26
SHA256

2c5c512b10ef69471e807207d8ec26c1f75da2ff5b752a284161ac54d4b0db05
SHA512

610c7eb7eacb34bfef90b34414726ee5ef91adf2b820eb88e0946ee6fd977feeb11bd685550caa21b6118f92e10121b2fc86596e469fcadd4e2d2298bb5fe77e
SSDEEP

12288:3/THbP8YV+3bW/t1w7sd8UBR3PNBGLxe0D+SjcKpNN6R3SJTH2PsssBQ7K:7jP4bWTwqBR3PNOx7D+uISJQqae

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df9154923d5644248b17781a775bde2c_JaffaCakes118

Files

df9154923d5644248b17781a775bde2c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.textbss
Size: 720KB - Virtual size: 720KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 484KB - Virtual size: 484KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE