27e397350e2cbf9315aa84ee6da95c50_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27e397350e2cbf9315aa84ee6da95c50_JaffaCakes118
Size

1.7MB
MD5

27e397350e2cbf9315aa84ee6da95c50
SHA1

684c02cf3069aeb00ae44094b68e9735e5969b7c
SHA256

e80f4b5624ad9aab0a55b44ed44064c55fd1ce97201c9592b9e1a3da0177da72
SHA512

b57ed5d02014642d4546dae9c0dc9a5d07cb91596dd252074f58efb71b71359d96f9a4fc5a7d68ba7df8926fd0a5ff8987001bd2635d2370599c54aaef63acac
SSDEEP

49152:0VA1LZpJBVJZsPWVdH6AJ9eo4J2JN9Q3AfG:0sllZsuV0A/4Jw9kAfG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27e397350e2cbf9315aa84ee6da95c50_JaffaCakes118

Files

27e397350e2cbf9315aa84ee6da95c50_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ