0ed509bc22b1ba83a333909a13e36bc3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ed509bc22b1ba83a333909a13e36bc3_JaffaCakes118
Size

362KB
MD5

0ed509bc22b1ba83a333909a13e36bc3
SHA1

d5d39169c714475c29aed4036c37ebc85f4e15a9
SHA256

dd1373a2d1b7ef080b5829a7f5f68c55ef6e5c4f60636b8bded15d19cca4e97f
SHA512

82a3cf72dfb98026707d3fb5bfdd4de3037487721133d7f4e2a05d689bd4260928915ce0c2c1d6d9efe0efe7c95d976bc1e29eb178426acddca2507a5c1582a8
SSDEEP

6144:A6RWOBr65G4M2pNhhz4G7Cw+Y9Obose8a24eDsmig4xZmaFY8EGthWK88:A6AY8G4M2rX9Cwjwbosjf4eViZxMWRT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ed509bc22b1ba83a333909a13e36bc3_JaffaCakes118

Files

0ed509bc22b1ba83a333909a13e36bc3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 317B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 614B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 392B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ