17dab7516811bb0b7f70a9813eb9d619_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

17dab7516811bb0b7f70a9813eb9d619_JaffaCakes118
Size

214KB
MD5

17dab7516811bb0b7f70a9813eb9d619
SHA1

3e7b2788a41d6f517d9ca58821fe99de125d0876
SHA256

732b0262164751ac4f46f8580e44d342482f1c825b4ddcd455275cdd18918b50
SHA512

7e39bcb5265ab2c505b2ffd06a6957657630d387bc68e31b6f5a2667605a31b6cafa333bea28f1ee5f7f30bbd0a792896e4d7ee8902e4231a59f988d1d07d842
SSDEEP

3072:lbSNWsXvT6OBdP7FZ+xh11+f1QzY4e3ULMk4KhsrGldaJ4LWl/H7qF7rYHz+SiLd:9qWs+OBdjYh1SyRAUz4K7NWhbqF7aKd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17dab7516811bb0b7f70a9813eb9d619_JaffaCakes118

Files

17dab7516811bb0b7f70a9813eb9d619_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 97KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 21KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 11KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE