3033e3074049aa391ffe30d23a97efa8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3033e3074049aa391ffe30d23a97efa8_JaffaCakes118
Size

32KB
MD5

3033e3074049aa391ffe30d23a97efa8
SHA1

d24d52a5fb3dcddb99af5cb7b5d7fce0377ab384
SHA256

d8c1e69320e632e753018679a3f8d39427f043eda90714857906722099f5cbcb
SHA512

dfd4aeca4d9cadbedb09d29c9c01939348c846899edcb7b2ffd5b3e018b381552772970fbcbae940a4114c449d34a6027e27f9a0d4fc28ec9e70a863d82a6e31
SSDEEP

384:fM4V5uJHRZusHcnp4Ne/szxMwGYozis2/YNpwd+anuEbVF+uP3d0dPyoVd8mUER+:vfI5Hupae/sqtZhzMseVquPHFE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3033e3074049aa391ffe30d23a97efa8_JaffaCakes118

Files

3033e3074049aa391ffe30d23a97efa8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 456B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 693B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 782B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

tre
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE