f691e0d71e43d51754dea950df8488e9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f691e0d71e43d51754dea950df8488e9_JaffaCakes118
Size

506KB
MD5

f691e0d71e43d51754dea950df8488e9
SHA1

05a44e85566ee26f2d94c08bc0ab9c88c028d349
SHA256

986f3044e1c616f381395e9f6c40a07f864a683f11e6ca95c9f56c1a0fed89c2
SHA512

705526e228527a65d46dc7b4ab5bbcfe0ef5a848bbf1975a02691ba05e09c3926e4d7eec5ac5014078c5473cea39b7f421b2e3383a9d809f89b2333fa385725e
SSDEEP

12288:JMP554SWW0geYG9JruFyUdIgnYy86Xm+BZG1yjDJMFR:JMP5ungeOLIgJ86BWwDS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f691e0d71e43d51754dea950df8488e9_JaffaCakes118

Files

f691e0d71e43d51754dea950df8488e9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 475KB - Virtual size: 474KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ