40c8b2e263ae13a0573f5007d8b7b894_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40c8b2e263ae13a0573f5007d8b7b894_JaffaCakes118
Size

1.5MB
MD5

40c8b2e263ae13a0573f5007d8b7b894
SHA1

55a872ed0d8f82b311739df4030b3be4dccbadc5
SHA256

f51beeaf16b9328a3768c5734095510e783b3af6155b28d420aedca38df9e795
SHA512

c31af335ee2fa6141d3a767a095b2a443674d80af1db1f8274588e5c31a7e3d98964fc7e96ce59a9c82d502c85715d012d9159fb15ac744001db26aaee942871
SSDEEP

24576:Nqr6ranQ7DCO2Qfm6+uPX6T6sui9m57K+sN:NmsanwCqO6+uPWYo+o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40c8b2e263ae13a0573f5007d8b7b894_JaffaCakes118

Files

40c8b2e263ae13a0573f5007d8b7b894_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.5vmqey
Size: 1KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.e4d6qw
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.57uji9
Size: - Virtual size: 776KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 3.0MB

.adata
Size: - Virtual size: 424KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rbss
Size: 733KB - Virtual size: 736KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE