7c90fc628636e283a06849040d5847d1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7c90fc628636e283a06849040d5847d1_JaffaCakes118
Size

1.0MB
MD5

7c90fc628636e283a06849040d5847d1
SHA1

49b885d41abd5999f16ec1fd43d02db174ee4f7a
SHA256

2e6b47ab3e44165269a6e0c1e7981c7ae0e2f981dfb5febda7ec11d32dad8657
SHA512

b35e6ccae01c2100918913d9a40badf1eb6f3aeb9515d2b50e84e175096a5a9333f17935b458a144d5f30ba5c433263bcd6266039c4230d7e8b6f0d4d73bdedd
SSDEEP

24576:ytpcG8FAzb2si1GNMJDXodhrOlIADApIcWgwO:3izb2XGqTKSlI/EO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7c90fc628636e283a06849040d5847d1_JaffaCakes118

Files

7c90fc628636e283a06849040d5847d1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 522KB - Virtual size: 522KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tzt2
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 512B - Virtual size: 314B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 295KB - Virtual size: 295KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 214KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.datax
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ