153b5163df6fe3a6158d7617d5055833_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

153b5163df6fe3a6158d7617d5055833_JaffaCakes118
Size

80KB
MD5

153b5163df6fe3a6158d7617d5055833
SHA1

8085a12117f46edc9bea725d794afe8549803203
SHA256

ba5a6e6fdd8ed8aad8ff9ecb21b030e0acec9f6865a066d1720b4e2705b4c4cf
SHA512

424e12860cf5e35065eba7189709e0d374e0f2853a5a1e95b2325f1fcd1f835afa53572b13e2d45fb632994ddc2035f0d86fc25308e35af8cd2c86e51beeaa06
SSDEEP

1536:Eb0935QtqmIOcXzC5pe6xbIYKtrOkWlHQ9bTUgv+Iq6:rJ6rITDCNbD0rVWpCT/v+/6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
153b5163df6fe3a6158d7617d5055833_JaffaCakes118

Files

153b5163df6fe3a6158d7617d5055833_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

CODE
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rElOc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

edata
Size: 8KB - Virtual size: 4.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 4KB - Virtual size: 191B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ