3821d28b0ca9d5dab55317de4c84cf6a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3821d28b0ca9d5dab55317de4c84cf6a_JaffaCakes118
Size

176KB
MD5

3821d28b0ca9d5dab55317de4c84cf6a
SHA1

2dd5b74ffb41c2c5e1cb2da6e8f38edb0f33c019
SHA256

b179dca103cca5e85bcf4ef010bcac8f1c2827026bb03e9e2b7d289bff728e67
SHA512

3189f7bf8a402956fe017221143e08891bf8ea69757cdbe9305f3ec8e8a4ecb5458fc4c890e32e4e442ee0afc56a618c5a63c0aff0118b530a03b7e3bfedef73
SSDEEP

3072:lQ1GpcqAeM7OaDigX+6mPS42qBKTpCzNzmbBHC/f7zlRSKCBsbHPrG:lSG295vbXbaS4fK8NQA7zlusX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3821d28b0ca9d5dab55317de4c84cf6a_JaffaCakes118

Files

3821d28b0ca9d5dab55317de4c84cf6a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

IsValidTaskOld@12
LoadHeader@12
GetFullNameOriginal@16

Sections

.Much
Size: 142KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.byo
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mempi
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Gemsm
Size: - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ