18d29fd1b1b0286d08c9ed0a414d9033_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

18d29fd1b1b0286d08c9ed0a414d9033_JaffaCakes118
Size

945KB
MD5

18d29fd1b1b0286d08c9ed0a414d9033
SHA1

2afc012ec495c0b5073d9550dca977bd35552db7
SHA256

f3dfb82fcb9176b5e94f04136c3cd182a545fe0d551ef483148d00b5d3b76231
SHA512

29404d72d512b116297b9a659910728ef6b59c20bd7911b4748fb7c27d21c795ea303aca5ea017131f5bdda2d7e77b63cca8bfc1f6613d21684e800e1e3a1d9b
SSDEEP

24576:tzg5KaKr+0C0nrFj+mVYG3+JSysWVL65IL:t9r+0C0rF/3+zsW2IL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
18d29fd1b1b0286d08c9ed0a414d9033_JaffaCakes118

Files

18d29fd1b1b0286d08c9ed0a414d9033_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.syk0
Size: - Virtual size: 5.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.syk1
Size: 915KB - Virtual size: 920KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.syk2
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE