a8c4f77f64fa3a724ac9da758d939e5a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a8c4f77f64fa3a724ac9da758d939e5a_JaffaCakes118
Size

92KB
MD5

a8c4f77f64fa3a724ac9da758d939e5a
SHA1

aaf45b2dff99808a81e813f5225e862df2e1eba2
SHA256

e7b3ba6b2911a41606519033a333dc4e0d1f92d1d90b82a02b1e9165d304256b
SHA512

c747a74db3eac42ffa0b8c3749cb2a3f0334d3b2eed7605221d443a9a8071ca1c50a749626a9a176b9a89bf311b1244fdda60dfdc9a3317bdbb32f37dfe45f65
SSDEEP

1536:EAPJMlYFfSSWg8wEDjkc9Gshwh4MYe5P3dyp9NjEdaZ5m4ubwPCS:/PalYFfgg8wEcc9Gshw1Pc9NjIXRb5S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a8c4f77f64fa3a724ac9da758d939e5a_JaffaCakes118

Files

a8c4f77f64fa3a724ac9da758d939e5a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_UP_SYSTEM_ONLY

Sections

.text
Size: 20KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4080.1MB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ