f6cde4ec8ebab7f3d0d9bf3a1819226d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f6cde4ec8ebab7f3d0d9bf3a1819226d_JaffaCakes118
Size

475KB
MD5

f6cde4ec8ebab7f3d0d9bf3a1819226d
SHA1

8538c77af9b7ff56db0512356e8b59f6952c5627
SHA256

b82306965db34d87efb9564603ee49a22d3d24a697de04fc35074c21af6f8f9c
SHA512

351835372a6e5b78097775daf0349ed509760c21ca89e7941cf7cd57b9b4b6d37e3d02416172b9e95ec12c7a8bf30c99df02c6b1757a5a1b0f9e9c3e14f71417
SSDEEP

12288:oRPyIlTofKqGiSZ/kSSi6BmKk2uyk8M9uPv/PM:oYuToYSijGHk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
f6cde4ec8ebab7f3d0d9bf3a1819226d_JaffaCakes118

Files

f6cde4ec8ebab7f3d0d9bf3a1819226d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.$
Size: 2KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.engine
Size: - Virtual size: 3.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.null
Size: - Virtual size: 460KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug
Size: 106KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 60KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.newimp
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$
Size: 26B - Virtual size: 26B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$
Size: 38B - Virtual size: 38B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$
Size: 41B - Virtual size: 41B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.$ Size: 2KB - Virtual size: 40KB

.rsrc Size: 512B - Virtual size: 12KB

.$ Size: - Virtual size: 4KB

.engine Size: - Virtual size: 3.0MB

.null Size: - Virtual size: 460KB

.debug Size: 106KB - Virtual size: 108KB

.adata Size: 60KB - Virtual size: 116KB

.newimp Size: 512B - Virtual size: 4KB

. Size: 14KB - Virtual size: 16KB

.adata Size: - Virtual size: 4KB

.$ Size: 26B - Virtual size: 26B

.$ Size: 38B - Virtual size: 38B

.$ Size: 41B - Virtual size: 41B

.$
Size: 2KB - Virtual size: 40KB

.rsrc
Size: 512B - Virtual size: 12KB

.$
Size: - Virtual size: 4KB

.engine
Size: - Virtual size: 3.0MB

.null
Size: - Virtual size: 460KB

.debug
Size: 106KB - Virtual size: 108KB

.adata
Size: 60KB - Virtual size: 116KB

.newimp
Size: 512B - Virtual size: 4KB

.
Size: 14KB - Virtual size: 16KB

.adata
Size: - Virtual size: 4KB

.$
Size: 26B - Virtual size: 26B

.$
Size: 38B - Virtual size: 38B

.$
Size: 41B - Virtual size: 41B