f1e9738f3de888fed83d508d259e6f96_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f1e9738f3de888fed83d508d259e6f96_JaffaCakes118
Size

1.1MB
MD5

f1e9738f3de888fed83d508d259e6f96
SHA1

587ae9a81d261d406be3fac6d9fb9d4c1b29768f
SHA256

120349109788343ed86321a641856231b0059e5e349d8e8a9ef88c75acabca04
SHA512

c510ab19da5e6597171141b041d8c5c6a82f21ac699f43b17b5a122a45ff9d51ca750ed2cf502bf4a6ea7dcc552018f5c3c4570ff0f442157f1930ac45e76737
SSDEEP

24576:TVC1o3AAENwiGrkD0GVOrryNdA4mcEY7gEbT:GuuS4RHmEcE3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f1e9738f3de888fed83d508d259e6f96_JaffaCakes118

Files

f1e9738f3de888fed83d508d259e6f96_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 700KB - Virtual size: 700KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fuck
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE