b00f464887495e459e78844316971f0a_JaffaCakes118 | Triage

Sharing

General

Target

b00f464887495e459e78844316971f0a_JaffaCakes118
Size

143KB
MD5

b00f464887495e459e78844316971f0a
SHA1

ade3a522e63aec9daccef6406b5167cb4d57bb9b
SHA256

53594d0db0a280c64e03a6bb4322748307546a20500228b2a17e52251c77c61e
SHA512

3d0aa291172dd490481fbb5d94d1f0c06674067d582018ebbda76ca3eb9105ac3ef712b347699d50de4f232e186d6b196963e9f6fcbf1e83e94b830980c3f842
SSDEEP

3072:Ff8wNOO5/bHoUYmxF44UkbZEvoAlJjlwLljpx2sFx6+fJ:Fn5dn4rkWg6Jjlib2saiJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b00f464887495e459e78844316971f0a_JaffaCakes118

Files

b00f464887495e459e78844316971f0a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 80KB - Virtual size: 4.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ebut
Size: 58KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

drxabbr
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE