JaffaCakes118_63d2ee284ea9d7b62d42c10111f8f157 | Triage

Sharing

General

Target

JaffaCakes118_63d2ee284ea9d7b62d42c10111f8f157
Size

135KB
MD5

63d2ee284ea9d7b62d42c10111f8f157
SHA1

c04b071315bba37482bc8d8affb6e155d8138bc5
SHA256

afd1775c9e145c62f2af712cb50fbcd2c077187c6d9d270d28839ea8303d770a
SHA512

1af0eeea87d7276729f1201d6f0131771c95e76c09c07aa3e431c9e352d683f783b3887d9e849c7f7a9c2e6a366c302b6c67fa6fe00f56a15d79dd39f91c1f1d
SSDEEP

3072:Uf8wNOO5/bHoUYmxF44UkbZEvoA0opVgZGW:Un5dn4rkWg8pV+GW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_63d2ee284ea9d7b62d42c10111f8f157

Files

JaffaCakes118_63d2ee284ea9d7b62d42c10111f8f157
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 80KB - Virtual size: 4.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ebut
Size: 50KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jknmuuf
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE