JaffaCakes118_905cbff879cf2bd68f886a5799a56edf | Triage

Sharing

General

Target

JaffaCakes118_905cbff879cf2bd68f886a5799a56edf
Size

1.4MB
MD5

905cbff879cf2bd68f886a5799a56edf
SHA1

0c445811f97bdd48c8cf542637fd79b97dd1fd16
SHA256

36d2e2ce756c8d71ea42a31d78ee3d706e713e2adc9b71334ffce725e7109d50
SHA512

2854576568d2f15ee7e0ddbb66beb9a60bc987abf6d3267af7692afa3105ab739a1451fb0a61321bd1a02a30aff581ba19ac480f847e0d25aa239a8d1d4b7814
SSDEEP

24576:2xaVauEH/0rY8SeVU1/+Or2StBAF1Q+l25YKjYP91UZ4GoN7ilv/3cGN9Oaqg+L:2cYMrJVVaQiMF1U6GoN7mv0zfL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_905cbff879cf2bd68f886a5799a56edf

Files

JaffaCakes118_905cbff879cf2bd68f886a5799a56edf
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 700KB - Virtual size: 700KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BB hack
Size: 739KB - Virtual size: 744KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE