0db9ffee66a9e946cfc523f78b5c386b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0db9ffee66a9e946cfc523f78b5c386b_JaffaCakes118
Size

178KB
MD5

0db9ffee66a9e946cfc523f78b5c386b
SHA1

71b6e4956043a95560a9f5d32e2bd4ff3f65f21c
SHA256

63e37d4ee8c1884d2c3d413196a50f02098692eb610e67a2318dd20a5072db1e
SHA512

26826fbe109f57dc29d897b9113611d66728bf62a70e4d3fc37e6a3627d37a47fd23303fc6459dba7d6f57a84ec2881fd548f389cf7db9d3b38c8a2c24b311c7
SSDEEP

3072:pFMIr/LE/v3k5rnkV4ITg4Jez2CmENAz45olqgD5h88CGdUJGf1EtCNw+17bcVmb:XXE/v3k5ccuesc8Jqgthddd6tCNwukmb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0db9ffee66a9e946cfc523f78b5c386b_JaffaCakes118

Files

0db9ffee66a9e946cfc523f78b5c386b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

?JHFjhkfjlKLUJFiufiOUuifHLFJHlffgdgf@@YGKEPA_WG@Z

Sections

.text
Size: 163KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.nfodat
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.point
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.temp
Size: 512B - Virtual size: 401B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.port
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 59KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ