3e64d898ab123ee9d67e7e65b959dc0f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e64d898ab123ee9d67e7e65b959dc0f_JaffaCakes118
Size

34KB
MD5

3e64d898ab123ee9d67e7e65b959dc0f
SHA1

78940fa9102ff4f81202eaabe2fc912866722109
SHA256

e8bb7f3f8615eb23bea28f0fb1cc901cefe5ffce2affa22c3737870a27c0f49e
SHA512

865aeea9d0b71d8da1e855c1983a47b75ff1771acbf0d827c2d3e8146127dd0fbac476d84b8c39718fed935f73be3c5b2f841b1805ae191e5824e3fc4d916a54
SSDEEP

768:FJ5LTgXQJwKS79hp1gl6Xn7J5LTgXQJwKS79hp1gl6XnCYyFMDu:X5LTEkwz795gl6l5LTEkwz795gl6ly2K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e64d898ab123ee9d67e7e65b959dc0f_JaffaCakes118

Files

3e64d898ab123ee9d67e7e65b959dc0f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.Upack
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lea
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE