1a35240b886603a4b617a0a1d7cf8817_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1a35240b886603a4b617a0a1d7cf8817_JaffaCakes118
Size

281KB
MD5

1a35240b886603a4b617a0a1d7cf8817
SHA1

cbb3990b5ba176d48c7197c67232bd4864b85633
SHA256

1bbdfecc95553799b9cafd99b207e19c037288c3c55508b52c8a32b10efe4c67
SHA512

ab813c5295c61dff25f1b0bde3c198124cf1edabec329a78bc4570eb24b0200421d7c3c7dce4bd99d361db929aa11a0e32c0704f2cadfa63b8f127dee1466923
SSDEEP

6144:g0zqgNkiF2nnrqpz+SszpTv1Yge5TBgbJSxPpzi:VhNUns+SqYge5TBek5pG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a35240b886603a4b617a0a1d7cf8817_JaffaCakes118

Files

1a35240b886603a4b617a0a1d7cf8817_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

rwbh
Size: 1.5MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mrw
Size: 64B - Virtual size: 352KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

chmrxc
Size: 48B - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hmsx
Size: 64B - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE