0648a07f2a907c29b2d82cba97986220_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0648a07f2a907c29b2d82cba97986220_JaffaCakes118
Size

76KB
MD5

0648a07f2a907c29b2d82cba97986220
SHA1

c5ad1a5c3f825a70708a2b475070d3bc22056ac9
SHA256

ef3d6dcb7fba6e4141fbb4b53b2b20c8d086b30e9e0580f65bdad52888f00913
SHA512

7ab17cceaff4145a252ca92c9dc9077dc955c9d00933338ce718de94088dc8c8014121756dc550104d144008aed979a3b1e04caacb1d3fcaa1e238bbb0f49c6d
SSDEEP

1536:MzFyGVwTibnWLdz4TFiqXJW1NzAYCO8eqpwlRxa/pEtAE+sHX/r:MgGuMmdeoq5apgJpiAE+kPr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0648a07f2a907c29b2d82cba97986220_JaffaCakes118

Files

0648a07f2a907c29b2d82cba97986220_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ByXueLuo
Size: 72KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE