0b92df8139ec15396e12789505198683_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b92df8139ec15396e12789505198683_JaffaCakes118
Size

614KB
MD5

0b92df8139ec15396e12789505198683
SHA1

c6fa9945505d250bd0480a108591b0471bf27269
SHA256

c288b1ef00baf1a9b7dd2f98473a009c486cfd1c0de39dcaae22a201d42fbaf5
SHA512

3df77e6835a53b29d444181f5434a331c1ca74ade6911d8c57b8a9bab37e949374c8b6d42b44c8118cc764c155c383f95d2e9a29626fd6e09e12efb9c484eedd
SSDEEP

12288:JAK6Yiqsohhl4MecTGXr6Lnki6ad1ZuB3h1dHd2pPKvNmers1GRtJzOkWbh4Zn:JAPURhhdeDuLks3uZh1/2xK7s1GRtlOS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b92df8139ec15396e12789505198683_JaffaCakes118

Files

0b92df8139ec15396e12789505198683_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 971KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.perplex
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE