467cf51fe9d4846b6a9e2c6d6fca620b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

467cf51fe9d4846b6a9e2c6d6fca620b_JaffaCakes118
Size

224KB
MD5

467cf51fe9d4846b6a9e2c6d6fca620b
SHA1

928d2056d670ce43a68c6bf25fdaab095e2f64a4
SHA256

9f8ba379f148154e3b3f1378ba66f942e823919937a06d175cca037783599118
SHA512

8b5ac853ac3936e0430c1b2cb913edff2637c1823c8cf3dbed84b1711eb7a9c9a6129e1991a1c2889c8dc422a023db8a6d0429cca99f3d83b2197931fbed0e8f
SSDEEP

3072:vhAy+u5MPT4pUH1EOZWr0DrgxLb48oPilGTWUGBm9/y9mnUS7dIMSD7qa+3vkP6X:vySGV0rW2Lb48oPWUZ/jU0dpx33snxJs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
467cf51fe9d4846b6a9e2c6d6fca620b_JaffaCakes118

Files

467cf51fe9d4846b6a9e2c6d6fca620b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 189KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ