f462a9828cd9c52bca9c0faab0173605_JaffaCakes118 | Triage

Sharing

General

Target

f462a9828cd9c52bca9c0faab0173605_JaffaCakes118
Size

885KB
MD5

f462a9828cd9c52bca9c0faab0173605
SHA1

0c738d8950a6d88fd8a01af25409b9866274c695
SHA256

57e430b07a290c749f3169a47fc6b1b4ec68e61baa2a4f530966c03440f23a67
SHA512

84648ebdb764747dea0b4ce1169afd28f5f1e23b548f73783eee9206003ee69c7f227496fec6b74f94ad346bc13b4d538d3a57e3c69e7a1c2b84a0793106db56
SSDEEP

24576:4v+MQ6YIPFn5IPmfBN3i2UtfmBxUNdGnnhYdj:76YIp5ZfBNWNmBxydwhkj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f462a9828cd9c52bca9c0faab0173605_JaffaCakes118

Files

f462a9828cd9c52bca9c0faab0173605_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 280KB - Virtual size: 280KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 56KB - Virtual size: 568KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512KB - Virtual size: 512KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 208KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE