f020e9485b8b6003278e95d436d59e2d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f020e9485b8b6003278e95d436d59e2d_JaffaCakes118
Size

264KB
MD5

f020e9485b8b6003278e95d436d59e2d
SHA1

2dae755c24a92129d8e7386d5f35f93e6917faaa
SHA256

88df39fe1518aca0ac2369cc4d22031937ddc1cda92f695e6009e3f1e8095835
SHA512

e13f52aa769c7fe2b127687aa3fb3885eb98e48fb835af7b638c6dd5824b4188965861377fdea6f18a77c1a3767d77311a30f46dbc6a0442f1f660352c4b1ad3
SSDEEP

6144:2ncFTxjQf6ene3WviX0UOJXF0WfNQF4MNFj8unDJCj5:2nOZee3WQq9z24k8uDJCj5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f020e9485b8b6003278e95d436d59e2d_JaffaCakes118

Files

f020e9485b8b6003278e95d436d59e2d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

��0
Size: - Virtual size: 892KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��1
Size: 263KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��2
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE