56a9ff23caf5fb74399a528a4532f28e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

56a9ff23caf5fb74399a528a4532f28e_JaffaCakes118
Size

2.5MB
MD5

56a9ff23caf5fb74399a528a4532f28e
SHA1

4064b2df4c2fabe8bb1dbea7cd040f568873d390
SHA256

cc6ad4c215a448a088a31d153ba5eeee9205e7c79672680fd68a642c18912f02
SHA512

a86985b1c5dd64796228c899ad1226ecf0451e572cc8f2ab23c590e2b0e6013d8ab32ffda16620e0a5e17b2ebd346f132d773aa84510c0b91bf2114f3229ffae
SSDEEP

49152:EPfF25wUPbPLGfTG4/1fKe6H+gOcKdqeusIWdYZ9g8wRKM8tGduvW3i65Sw:EHF2GUPbPsG4dfEegObqdsIWdYQbH8tg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
56a9ff23caf5fb74399a528a4532f28e_JaffaCakes118

Files

56a9ff23caf5fb74399a528a4532f28e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nkh
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE