0bc14a3a954f8d7a6cb0a289d27e1cd8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0bc14a3a954f8d7a6cb0a289d27e1cd8_JaffaCakes118
Size

2.4MB
MD5

0bc14a3a954f8d7a6cb0a289d27e1cd8
SHA1

223254c15fc3f16e36532b982c1ad4f40c654a1a
SHA256

6649abc5e979b15476efd1694117eda8f3ac37214f3e24c2534c6199dda07cd5
SHA512

92cac1cb301c40eda27fdf224cbea17fff36333c3218fec2e7f6f3d97db22b855a9044fa3c08454c37b1a9809b88b2da61e28cacb5b68250658d5b6b82ea7d61
SSDEEP

49152:v1asmtBL9ZwVTNQ0uAeFZ/LSoCQlQ1JyZ5zLLa+eqPFUPfxWSJ7/WuesrO3rpO7L:tasmtBL9LXEQu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0bc14a3a954f8d7a6cb0a289d27e1cd8_JaffaCakes118

Files

0bc14a3a954f8d7a6cb0a289d27e1cd8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.BSS
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.txdata
Size: 4KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 5.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE