30d17c65a6db27ee3a8c6e806c43534b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

30d17c65a6db27ee3a8c6e806c43534b_JaffaCakes118
Size

135KB
MD5

30d17c65a6db27ee3a8c6e806c43534b
SHA1

39b0262cb04847dce0bd3ef5f5f82c4e6bed0741
SHA256

ef32ca4ba0395fd6953630c89f022b09d9644bbfc7075352f2e4e4b77e980f52
SHA512

0adf8dace9a5295db332e4ecb02e9f9069b30242877caed07c39202ea21b1a8169fe97b62614c68778cf43c5b7d8e0e4c2aba2f1373ddf0dc000a30985d3a729
SSDEEP

3072:oTgFI6IZjokLqGp1XJQmAH2UMtht0Chm4tJqO5wnIAXg6jzkWf6e/Qg1Iy:oTi2p1XJQmoMS2m4H35wn9Q2zkWf6Ocy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30d17c65a6db27ee3a8c6e806c43534b_JaffaCakes118

Files

30d17c65a6db27ee3a8c6e806c43534b_JaffaCakes118
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.tdz9a9
Size: 1KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.alg$ij
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.8kvs5x
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.h04jo2
Size: - Virtual size: 692B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.null
Size: - Virtual size: 3.0MB

.engine
Size: - Virtual size: 456KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 132KB - Virtual size: 136KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE