a8d84a659c85fd76cb1cfd19760dc3b2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a8d84a659c85fd76cb1cfd19760dc3b2_JaffaCakes118
Size

2.5MB
MD5

a8d84a659c85fd76cb1cfd19760dc3b2
SHA1

d42ac1fd2ce7529967c85ff2baa716df97876ce2
SHA256

acbfdb13d476e2d51fe7075c5e433b2a54776bdf6fc8a315428f299c033226ce
SHA512

f1458fc3a97b8144941c2ec3204bf82c03d7e73c801da84749d903f30acf2e166278164c5f8c82fa419d3af0795d9f77d18edf351e9b285d5b2d4b364dc282e6
SSDEEP

49152:XFL5f+6001kJlpRHK3avfU5TUuTz5YG8+BdSLJQsUeIFkxn:XFdfp0mkzzG0sWuTz2G8R9pUelx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a8d84a659c85fd76cb1cfd19760dc3b2_JaffaCakes118

Files

a8d84a659c85fd76cb1cfd19760dc3b2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 29KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 569KB - Virtual size: 569KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ