4f22d084d8ea61a5bd04105d5adf696a_JaffaCakes118 | Triage

Sharing

General

Target

4f22d084d8ea61a5bd04105d5adf696a_JaffaCakes118
Size

9.5MB
MD5

4f22d084d8ea61a5bd04105d5adf696a
SHA1

7407a472eb3fc38ce535965a12a03056e67b16dc
SHA256

9a6624f1026bb119414c3d6f45c0012f9cfd6592a3fd39e48497a2811b8a6a25
SHA512

281e02f269b3fa04f9bbbdab517461c8cd0c834b61176540414cd49a5e937e9b12ac5c1eda12b7608576e9d3ac16b4aab9132cb92182f0c7fb839dbea1ee9f62
SSDEEP

196608:hqBcRH2WLL5eUt0q3sTg2jvWfQ7KjbCLl1zRgM6x9C1Vj:EBcRx5B0q3s7vL2jbyfmx9Aj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4f22d084d8ea61a5bd04105d5adf696a_JaffaCakes118

Files

4f22d084d8ea61a5bd04105d5adf696a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 172KB - Virtual size: 640KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Flight1
Size: 672KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE