85249a5b6969f1233e3c0eee5c7bd22e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

85249a5b6969f1233e3c0eee5c7bd22e_JaffaCakes118
Size

263KB
MD5

85249a5b6969f1233e3c0eee5c7bd22e
SHA1

e4573edbb545a1799037c748fa6af45b1eea2c6e
SHA256

d11eab46888d3dbede9e3d1a195147377be7fce84cdd26924fb94c4311226130
SHA512

2faa84baef135719a59c71a38efdc981553badec68f9454067114368fb970a2fb9b91acb8c3f2ad39f9f19c33a5eb59d29f32cdfac207c7905cbdb623f267a53
SSDEEP

6144:o+5gvi+LGjgSQUSxZ7IHf4oyN/gz0j3Iia8cQvC7UCaH:ooTlJKZ7GHyNY43IiaECAfH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/rzr-ra34.exe

Files

85249a5b6969f1233e3c0eee5c7bd22e_JaffaCakes118
.zip
rzr-ra34.exe
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

RAZOR
Size: - Virtual size: 660KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1911
Size: 262KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
rzr-ra34.nfo