JaffaCakes118_bfe78d863289884c1eb72dd4c17ec33b | Triage

Sharing

General

Target

JaffaCakes118_bfe78d863289884c1eb72dd4c17ec33b
Size

1.3MB
MD5

bfe78d863289884c1eb72dd4c17ec33b
SHA1

e004f1d015a7b3259bf1d412f9a01561d2ddc81c
SHA256

ca59df6efbf56fe0a4bdce6782ea7cb03a715e521ee9d1764f03255af0ca1630
SHA512

9ce57085c4f95b6e8237ac50bbd4cba78da8f49bc32620e820ec0a4f93725f69609fe00d8b11c0ad82cbf20effed5919a0aa69db62aacb37c565e89bd8bf3d57
SSDEEP

24576:aV0tD8gqyAHBXP8zcofDuDd0QSZgYpPVbOQE:+0l8TphkhqyXZvPMQE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_bfe78d863289884c1eb72dd4c17ec33b

Files

JaffaCakes118_bfe78d863289884c1eb72dd4c17ec33b
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

qkfyvvgq
Size: 312KB - Virtual size: 688KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 256KB - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

frrpcggq
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

emasmjfo
Size: 729KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kryojazz
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE