13a9d64f3d580b206343b21f3d2979b7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13a9d64f3d580b206343b21f3d2979b7_JaffaCakes118
Size

117KB
MD5

13a9d64f3d580b206343b21f3d2979b7
SHA1

baf15efa5aaf63a7fc3b295807bb9b5131553efb
SHA256

fb7396e4fac3d8de961459e77d10aa221a445de21a825a425c1ff7c75f640a2c
SHA512

b3abe8e5f7f75f3ab7cd395aa6cf2b669af483b5e69effa752fef81ef36d85bd83d95af821cf965ad23e74335dbb6657ce255642c4a536e21d1b8c28fa0d17cc
SSDEEP

3072:tQg4nDbfagCqKZk5yY/pQvnF9v94ZpcQLFQ2IyPsXW6X:yg4nDWgRAkPpQPF9viZRUGc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13a9d64f3d580b206343b21f3d2979b7_JaffaCakes118

Files

13a9d64f3d580b206343b21f3d2979b7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.textbss
Size: - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 187B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE