41f40f35ea97fedf09631202559dc944_JaffaCakes118 | Triage

Sharing

General

Target

41f40f35ea97fedf09631202559dc944_JaffaCakes118
Size

186KB
MD5

41f40f35ea97fedf09631202559dc944
SHA1

43ec2ad40fd6777d2a1a9eeb06064716e16c75dc
SHA256

6bbad406417f43d504972e1ef39f11752605c8922250765bf3ea1c353f5a9965
SHA512

6c041dddbd8b5fe4625e58df885820f0d753e732a2901e0e99e23678ab795bcbf2f4451c8533fc2b341cd8d062c9aa47c3c70990845a591ea16065fcdc2ade0e
SSDEEP

3072:OXIMKe6Ka05E3+LwwXx0FWfEqS9xqus832+CY6sAUrYZ0/hUzAc:O44UijLwwWFNfqu3Jh6sEsc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41f40f35ea97fedf09631202559dc944_JaffaCakes118

Files

41f40f35ea97fedf09631202559dc944_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.0mbt9$
Size: 1KB - Virtual size: 228KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.k83aum
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 569.0MB

.rdata
Size: 162KB - Virtual size: 164KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE