1014f25916a58ad794bed0cc5cb4f825_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1014f25916a58ad794bed0cc5cb4f825_JaffaCakes118
Size

543KB
MD5

1014f25916a58ad794bed0cc5cb4f825
SHA1

6c6faa230400027663a977ff3753c1440871df07
SHA256

c2479b9ad4fdf0923708df35c880271139fc2def22db7fd67a614e742bf6d669
SHA512

2134955eaa5528bea967cf37e43afe504268dd93c90ba198c4b9dfac72fc687f49f08ee5d57b0f31061f2ab22a564d380824e5f6f27f6c66f28987a15dedc31b
SSDEEP

3072:rPeDE2IvClaMYIcIPTI7aWWOQoJt+OMu1L4zfrasMD3f6vl81agusIcgMck:rDClaMYIcI7gb+foQzQf6vm11IcgMck

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1014f25916a58ad794bed0cc5cb4f825_JaffaCakes118

Files

1014f25916a58ad794bed0cc5cb4f825_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 464KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.newIID
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 29KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE