0fd2138a48e92e343472cfc6c7551e3e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0fd2138a48e92e343472cfc6c7551e3e_JaffaCakes118
Size

508KB
MD5

0fd2138a48e92e343472cfc6c7551e3e
SHA1

e469d9654c78f92ce6a89bc4c48d4ad732eef04d
SHA256

5dbf752b10a57d32dd88ccc267681da0bf52e10e2a67f0ee2e4c81c9311b6621
SHA512

844e1f0b6ed91a227414a41d46517921bbb09f08bfe81b4ead9986f84689bda4f891ba053146d2b6336b305b39248cd13924fd6d1fb101aa4724740c1d65677f
SSDEEP

12288:Vr8Qf4Gzq/nWD7oJttkCQOG3Mr5o6g2+3Rfk2VAzOtCjWFGHGfm:V34G3D7oNDu8SB3ZVAz0CjW8Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0fd2138a48e92e343472cfc6c7551e3e_JaffaCakes118

Files

0fd2138a48e92e343472cfc6c7551e3e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.code
Size: 1KB - Virtual size: 736KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.i6rfqc
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.7pa6gv
Size: 35B - Virtual size: 35B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 667.0MB

.data
Size: 500KB - Virtual size: 504KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 16B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE