fb155d3f5ea6aa96e7678beeecd30bb5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fb155d3f5ea6aa96e7678beeecd30bb5_JaffaCakes118
Size

484KB
MD5

fb155d3f5ea6aa96e7678beeecd30bb5
SHA1

7f9847cf6e9c321fe818430f9737e65971f4638f
SHA256

943f6241c08d0030976db3756cbd8c6399356aee15c55495ce9ebff2d2e66533
SHA512

2be3370872779ab157c78687f88d916286b20d2053fd9e4e3e60799c7d8c97af0bd4de0e7d24bbfebcaada984185c0958f1708dddc4b1fba80ad8d55e23e23a3
SSDEEP

12288:k5eX96eyR+guuXp7E8QSaLz8rb52XZSTHj:kwt1guuX2rpLz8IJSTH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb155d3f5ea6aa96e7678beeecd30bb5_JaffaCakes118

Files

fb155d3f5ea6aa96e7678beeecd30bb5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 408KB - Virtual size: 407KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ