27eacc69c672ea1cec29d71f41ac349b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27eacc69c672ea1cec29d71f41ac349b_JaffaCakes118
Size

169KB
MD5

27eacc69c672ea1cec29d71f41ac349b
SHA1

c49a78f9c68eb7bc3ce23ea280575d09ff713cca
SHA256

75ab9ea296e1ed53993a3c12123dc6ebaec075099839f55822397e6738d01bd3
SHA512

15610eb8a7ee35d2748624ed7f7bc1fe07a9ce5541cb4ff4940195e9810754a2cab9e026c6b02f2e252c0ac89f71b7bb19bc4fdc34e952b091b8edc465d2cf1a
SSDEEP

3072:pFMIr/LE/v3k5rnkV4ITg4Jez2CmENAz45olqgD5h88CGdUJGf1EtCNw+17bcVmZ:XXE/v3k5ccuesc8Jqgthddd6tCNwukmZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27eacc69c672ea1cec29d71f41ac349b_JaffaCakes118

Files

27eacc69c672ea1cec29d71f41ac349b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

?JHFjhkfjlKLUJFiufiOUuifHLFJHlffgdgf@@YGKEPA_WG@Z

Sections

.text
Size: 163KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.nfodat
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.point
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.temp
Size: 512B - Virtual size: 401B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.port
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 59KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ