ec0dca0ad638449daa7374ff5776c17a_JaffaCakes118 | Triage

Sharing

General

Target

ec0dca0ad638449daa7374ff5776c17a_JaffaCakes118
Size

366KB
MD5

ec0dca0ad638449daa7374ff5776c17a
SHA1

8b2cc4642173113e788d423b0e01d263710b3047
SHA256

306e9081201ce176d733e5c659763b3243f3771ddc981a7c9816d49bdc10be72
SHA512

a539b9d00619d35c138bbec7f88118683e0719409bb0d714f2345f0629cbd30c52ceb9979aa1f9b91c2b9b7e528848fb9b8f33f87ca62c6c3c9df6c1b7c2a641
SSDEEP

6144:2AfDcGRcId4WUC/WBH8/vRAKp+bKk2J4x8+C5XKa/pFp0bya9MlFNWw6QTmolP:NftSId4WUCeBeFkZHC56ka9MZWw6Q/P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ec0dca0ad638449daa7374ff5776c17a_JaffaCakes118

Files

ec0dca0ad638449daa7374ff5776c17a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 309KB - Virtual size: 309KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ