fec291dbdbb628eb2613d98c30415ec5_JaffaCakes118 | Triage

Sharing

General

Target

fec291dbdbb628eb2613d98c30415ec5_JaffaCakes118
Size

147KB
MD5

fec291dbdbb628eb2613d98c30415ec5
SHA1

9af9b9a036b987ccfee3f22450a9a1c648ff3298
SHA256

bef0b05defb998bb1295f2a02a85d887b45943b13fb105e831f997c085993762
SHA512

66e5a25174e4f287ad7641056e5d8b5f26fc1b2257546286d92940c08a09366ed11c1fc813feb979917c64be9100fecfcf0217e7a2013f5385df87ba7d3f9c22
SSDEEP

3072:RbXcpkQTa0rRoLJnePr/rLTkaxg2j9KdqjauaJJ8rszbi/3:RbMpkQT5rgcPHLfxg2xKsjau08rszbe3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fec291dbdbb628eb2613d98c30415ec5_JaffaCakes118

Files

fec291dbdbb628eb2613d98c30415ec5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.expert0
Size: - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.expert1
Size: 139KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.expert2
Size: 7KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE