176b131a095c2a26219cfdaa60b0e519_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

176b131a095c2a26219cfdaa60b0e519_JaffaCakes118
Size

169KB
MD5

176b131a095c2a26219cfdaa60b0e519
SHA1

8aede810969c0d4cf2aab3f7a2de78f1fa22b64a
SHA256

aea4d98af1f8e334410faafad0d5a31f0b440b8de9b18d016171fcd3c506fad8
SHA512

a448f28cc4bd6dfa50efb589add6e9c612b95b7a708d0ee0e25e92777156e1cad0e6579c1d54599fdf52a190c6837357e589028d1ee643246cf8b905c4e000e4
SSDEEP

3072:nJyjayZ7uhQBQRZfM3opETPENNmxCEMHf6wgzlE5lJYCEZwF5ORONtL4:eZ7e7fXWzw3gelJXEm5UOE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
176b131a095c2a26219cfdaa60b0e519_JaffaCakes118

Files

176b131a095c2a26219cfdaa60b0e519_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 309B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 70B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ