ea0030759f1788428e102233a9d8f618_JaffaCakes118 | Triage

Sharing

General

Target

ea0030759f1788428e102233a9d8f618_JaffaCakes118
Size

957KB
MD5

ea0030759f1788428e102233a9d8f618
SHA1

26ccaa6cfc3787794ed1d8aa0ee531f6f89aff02
SHA256

0eca210ec47ebf2e644504653e15ddd1e34d469b58cc01af90edee23263b0ba9
SHA512

b78f430ab6866fbeed746f011fb1277c30ef93b57255857c0c822629a2faa143619ceb48db7c0d5bc7609514afb2ffd3bba5446d951a033c25a64bb7679bacaa
SSDEEP

24576:QBN9TWxzGXdXtMPhZIy8FW5QyoxcbBNlyy:QtT+zOpOPhT6ybX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ea0030759f1788428e102233a9d8f618_JaffaCakes118

Files

ea0030759f1788428e102233a9d8f618_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 805KB - Virtual size: 804KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 7KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 20B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ