1495114685e08d898625694ada6a5006_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1495114685e08d898625694ada6a5006_JaffaCakes118
Size

101KB
MD5

1495114685e08d898625694ada6a5006
SHA1

18f79209cd87a90c8e7b8e9836d30214c8290cbf
SHA256

dfdcc822f242884f6dafa15b8886d48cd3b9aa18bb06e24359e364b733affe91
SHA512

878cb2a3edee750d0bdfa96fe8760a63a35dffca6ec9ecf30a0321af83136d99601a24a54ff72f4d65a2e13f7f110a2d8ba82ad766dbe1908d75b4be6585022c
SSDEEP

3072:s17izrTkwQt+yOimWyDcnIh3xxiFn+MBxkozv:MGzrQn0imDDh3xxO+exkozv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1495114685e08d898625694ada6a5006_JaffaCakes118

Files

1495114685e08d898625694ada6a5006_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

obd4jqv
Size: - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pozqtex
Size: 101KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

msniapl
Size: 476B - Virtual size: 995B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE