0a6710959b665e35843a3a68e93d89b5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0a6710959b665e35843a3a68e93d89b5_JaffaCakes118
Size

169KB
MD5

0a6710959b665e35843a3a68e93d89b5
SHA1

f80b50e2da9b980b1bf5c0c2ae2931052a21de20
SHA256

6624c9583bee54c36f4e335fa85b78f79f5345449b00a8299c6f08837f8db307
SHA512

fe49ebf68912fdef689faf907dde189cacdc26e9b977466e87c2903c0858c4b6988a9b8d50f2580a365d96128696914c1c7b9b11e7a18f31a8f799c7958d941d
SSDEEP

3072:jU6d1mef2tU0e4p1Ari9hpHSNc33JhQaskPHwBe/RrLZkqQ5RqMCSCW+0l9CwiP+:g6WU2tD1Ari9hpyqwSPHFkH0hhWBf/y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a6710959b665e35843a3a68e93d89b5_JaffaCakes118

Files

0a6710959b665e35843a3a68e93d89b5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 12B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ