41cf58e74a5771930734ae99c381871b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41cf58e74a5771930734ae99c381871b_JaffaCakes118
Size

1.9MB
MD5

41cf58e74a5771930734ae99c381871b
SHA1

32dfbf967beece0e0b4d7aea7b4d8ec5d6b3f39d
SHA256

b66ab960799af4644ef7b07de850ee59dfe57f1d2e1dcbaeae071c9d89a7c07c
SHA512

669047c38e198784116ab39975c1199e7ec1258f2ba3a4f80dcca264dbb484b5614faf29f121214adc8b39960db06f3cd6a922a6bb373c8dfbbc22504fc27c2f
SSDEEP

49152:uAuRNP2S2Li4sT+INXBbQfd6MbABoi0t2BC:iwSN4sTbNxbiLi00C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41cf58e74a5771930734ae99c381871b_JaffaCakes118

Files

41cf58e74a5771930734ae99c381871b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 36KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 1.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE