0a2e96d1e2290cddc56f638d7e1e1128_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0a2e96d1e2290cddc56f638d7e1e1128_JaffaCakes118
Size

5.3MB
MD5

0a2e96d1e2290cddc56f638d7e1e1128
SHA1

a16098c88b9bfd890d0b1c7f61f7e443bd082fac
SHA256

65ba49b456a7b4b529fb692084e786ac6e3fa55faf68eda29ba8c80e814d0714
SHA512

c2d9ce2bc5bc3124a8136baa8dd60939a49b82b6509463e3691ceb23280cc4524965a2fc86c3833ed26626d6efdb32b3e679a09db39bc71f2d79db6224e5c34f
SSDEEP

98304:LQFj5LBN/kIYJM19Zy4O3sq0f9d6dBQQ1gkUN13ZYHx3U3OYhQBp0w41uXmgv:LSLz/9Yiq0L6Hb1EjJYHBUVApF41Tg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a2e96d1e2290cddc56f638d7e1e1128_JaffaCakes118

Files

0a2e96d1e2290cddc56f638d7e1e1128_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 24KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.2MB - Virtual size: 5.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 4.1MB - Virtual size: 8.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE