faf40641309e3fe35d8964c6bfd3a076_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

faf40641309e3fe35d8964c6bfd3a076_JaffaCakes118
Size

384KB
MD5

faf40641309e3fe35d8964c6bfd3a076
SHA1

b3ca55918421666d52b0cd5e77722b74d3c7b088
SHA256

c3cfbe2cb265122ae8fc39a8e97b7a95448ba6e91b4a872051eacaabcd530ab5
SHA512

da760785b5df02bfdcb107e881a4745f79cb5f2c4346e41f297566c08a10c37f850578e961e99cb92a9d1341bffdf27938a425246adf63f2fa12b96dbf443781
SSDEEP

6144:RL/TzwBF2idZecnl20lHRxp3gohsV8eP8fAOXgfpJHzDSzjP0uXz6:5M7F3Z4mxxJhsV4AOwf7DGj7Xu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
faf40641309e3fe35d8964c6bfd3a076_JaffaCakes118

Files

faf40641309e3fe35d8964c6bfd3a076_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 45KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.perplex
Size: 332KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE