e08860b40a815163cecc44032a734017_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e08860b40a815163cecc44032a734017_JaffaCakes118
Size

998KB
MD5

e08860b40a815163cecc44032a734017
SHA1

f49302b319109d677bc83f550f2241f5c8c9eaf9
SHA256

bd963dbdc45b77d17e05f408775ce35ac7b617e80f802679ed3a93be1f8e3db0
SHA512

cd1227fea25fb50d5609183138937ced5a4dabccbec8a764e8e36d4f9c991f80bc33c9d7220ebe80e7a436f2d41d5f697b8da83db8bf60ad11618d88b231b718
SSDEEP

24576:bvFF+tZLkMPgqPa1dfDRiUbotVier1vcBN7Cs240XO/F:TF8Z/IqivfDRzoakI7C/O/F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e08860b40a815163cecc44032a734017_JaffaCakes118

Files

e08860b40a815163cecc44032a734017_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 177KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 800KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 330B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ