fbd2bb3f4a03505192781a3a52b0d348_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fbd2bb3f4a03505192781a3a52b0d348_JaffaCakes118
Size

99KB
MD5

fbd2bb3f4a03505192781a3a52b0d348
SHA1

39399c2756738b733fa245b4780f3fab17979759
SHA256

010e9a90e56068cb5b74e175aafd50105921d63ee8748a20fe79e371a3f83ca1
SHA512

10ea25c0cd5ac06801eb5d18f8470b384829bc5f5de0cdd0e1722dc6622c1310e7acf94e99afa2689e55eef7c31d4fa518d45ef2f8e494b35726ede7b2d1e10b
SSDEEP

3072:RPCbbES0km9Afq7CSajCbBbmEpf/xolw7WA:Ranjo7CSasbmEpf/al

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbd2bb3f4a03505192781a3a52b0d348_JaffaCakes118

Files

fbd2bb3f4a03505192781a3a52b0d348_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.textbss
Size: - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE