1009f7110ca0a9fff8e8e2367ae8e665_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1009f7110ca0a9fff8e8e2367ae8e665_JaffaCakes118
Size

2.5MB
MD5

1009f7110ca0a9fff8e8e2367ae8e665
SHA1

987ef97ed795499a39e22d0d74b4f3687873fa69
SHA256

5fdb533d209f6cc494d391c92a16e054fc350d3c7ef0c480acb6e775733113d4
SHA512

ad3669c98d9f67d5fa0e544f0e221ebfc4f5bedd239a9e0af9b5706e187d4b016672e103c74de05b2bf06247d26c260e8352029606585f2dfacabddd53f66fc3
SSDEEP

49152:xkQ/ZHIh3jYwdRUZuxsWqGQAQk9xXQTY3Oex/oeTWGfqHc30P0EHw3lFweMMEIX:xkQxQRwuxsWiVYTRaLHA0PAlFw3IX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1009f7110ca0a9fff8e8e2367ae8e665_JaffaCakes118

Files

1009f7110ca0a9fff8e8e2367ae8e665_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

Size: 260KB - Virtual size: 540KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2.2MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 20KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.x01
Size: 12KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yP
Size: 16KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE