f888462f12f8bba524960cf780f289ea_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f888462f12f8bba524960cf780f289ea_JaffaCakes118
Size

1.1MB
MD5

f888462f12f8bba524960cf780f289ea
SHA1

6f0d79ab5d5c541fb5c9962cc5da27c8282a2a95
SHA256

7c25c126365ceb4c66dde71fe6373b040905bb296c39deddd2874201af9583a5
SHA512

0e8ac89256ecd910b8a2d04bcafa33e0ca15f55fb0bb5fe56f4a6bd604681c10a25d6baf9f5c3a6690ddaa70cb8c41d9a12ecbdf99b03e0c31e346272fec0dc6
SSDEEP

24576:U/WKiUT/bvgQX2+Zj/CVAVx6Mbji+2ECSAd3IdcJpS:TmzvgQXZpVx6MWEQ3Ac+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f888462f12f8bba524960cf780f289ea_JaffaCakes118

Files

f888462f12f8bba524960cf780f289ea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 264KB - Virtual size: 146.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

stxt774
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

stxt371
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE