f250a46a5c9658f5790106419ceaab25_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f250a46a5c9658f5790106419ceaab25_JaffaCakes118
Size

98KB
MD5

f250a46a5c9658f5790106419ceaab25
SHA1

33350b7c6f667b79f38b02f618651ee57d3feb43
SHA256

abc60a1877ed2e86e7968cf48f6c56ce53254b007fcd8f22043e184358892ec8
SHA512

4b4527cbd3d2e6a7e3f5c9189bf5039d8d8326d7d73890f57dcc92e90746bf2faeb01c2304f30b40ad974aa034a1e67b9dab4d2d128f66bc0bb1cbeb8360b6e9
SSDEEP

3072:FRiEzwM9bV42e/np8qtaogcI4rYs1LFMyZ2sLp0G9Ab:FRikH9bVUvsoFcs1LqTsLa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f250a46a5c9658f5790106419ceaab25_JaffaCakes118

Files

f250a46a5c9658f5790106419ceaab25_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

amp88qti
Size: - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

d9f5
Size: 97KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nirw48v
Size: 821B - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE