fc0eb172ef1d5ac83c46545d254c4dfb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fc0eb172ef1d5ac83c46545d254c4dfb_JaffaCakes118
Size

378KB
MD5

fc0eb172ef1d5ac83c46545d254c4dfb
SHA1

41a7f65faac6b5c4526f0d5d510edff4cc7ac196
SHA256

896bb66a7fe6e39d5476b89484a7df821de7d4ebc0bbdd6a7f74fff3e68fde7a
SHA512

a51348c381745f88b07890ff38eeb9fb858fdc79778c5b3f5aac0fb6e6d09bfba7b57bf355e4a5bb5e1a2a23318fd91cfc6911d5caddf61dd3e3cd7b70edf0e4
SSDEEP

6144:Tgm4WswOAEI6xLoEGYYTO11tUmNOfscrdXoIxxiQ5Jdb196UmbHj:11nOAXeWPVFgQ5Jd19fS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc0eb172ef1d5ac83c46545d254c4dfb_JaffaCakes118

Files

fc0eb172ef1d5ac83c46545d254c4dfb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.FishPE
Size: 126KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE