15e7b37defc7ece3735dc67dcf29d8d8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15e7b37defc7ece3735dc67dcf29d8d8_JaffaCakes118
Size

1.3MB
MD5

15e7b37defc7ece3735dc67dcf29d8d8
SHA1

f89c57d99d0cc50d1b4282680c6f30667df02cbe
SHA256

66b9d56db8a6ad4805b4d3e4b13695787a049acb30a960d39474c6cb827a3e7c
SHA512

a38cf1ba094a78df534fe538f75aa37c0c7ffb2584772380e8b8819f56d96c21a4981c189e6d06c5ac492f44855634cc48462296a2a804940af46b66dbbd9802
SSDEEP

24576:lMVd9vPUlztd+/Yhoy6j3R745/zKJ97/TOrMo8p6oZaAo:cd1sWQi+5/zdMdp6oZjo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15e7b37defc7ece3735dc67dcf29d8d8_JaffaCakes118

Files

15e7b37defc7ece3735dc67dcf29d8d8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 255KB - Virtual size: 580KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 94KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 984KB - Virtual size: 988KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE