17f1fb18ec8125ca0e2fd40365513c93_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

17f1fb18ec8125ca0e2fd40365513c93_JaffaCakes118
Size

214KB
MD5

17f1fb18ec8125ca0e2fd40365513c93
SHA1

fe28bc85bc13bcff9b92600f87731cd73f0519de
SHA256

87a726e6bc138a2fe263044bed5e7adb2c27d88aec64e5c17b0f1e8a3937c387
SHA512

e2eb2691e6eb047acadbd3d883c5fc979620c4375cd510f7f830853de5b80ac5360b7a51b269ce592f8672470abc388e391b66d67f36c0e85d470dd1e4045e1c
SSDEEP

3072:CVOd2VBrxwbIVFnc+m6gcUlt0CGEdtyZzROActNrMhnGXawR5ZSTWYRWG6YEPmRL:kbnNyxcC0votyZkAcHrMdGZMTTX55RL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17f1fb18ec8125ca0e2fd40365513c93_JaffaCakes118

Files

17f1fb18ec8125ca0e2fd40365513c93_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 97KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 21KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 11KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE