f2ade225691973d8fea382f301e2bf62_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f2ade225691973d8fea382f301e2bf62_JaffaCakes118
Size

670KB
MD5

f2ade225691973d8fea382f301e2bf62
SHA1

f0613fc4840cea3c29342d5bab1b7fc205826841
SHA256

c154739de3ca762453b123df9a3aa82b553e71a8976610b1e9609db2521159c6
SHA512

b593ab080e14879c28b3e38bd5758974445fcac14a3ced4245e80c98772252f867ea37c83d79b898f9d3e7425702a2f297aa2802a3c3d0ad3e048e4cd7939092
SSDEEP

12288:8bdVqkL1+EwfgAUOonml4SjCES1Yyi5nOUO0w85BUqwGgqKchmeMP8DFzZ7xnsdW:6dFL1+EVAUOkml4SjCR1YycnOU/D56GR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f2ade225691973d8fea382f301e2bf62_JaffaCakes118

Files

f2ade225691973d8fea382f301e2bf62_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 8KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 158B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 650KB - Virtual size: 656KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE