2495c537d8e95645a5b022c01867668a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2495c537d8e95645a5b022c01867668a_JaffaCakes118
Size

1.0MB
MD5

2495c537d8e95645a5b022c01867668a
SHA1

0ccf6a70d192d76a4a81b03148d5f75dd8d7c12e
SHA256

4783303221f3009c7b5b139f2def1334368f1458fe4493ca8461121af6877cb1
SHA512

7d18139fa865b82b71f3741fbb5933a336cc17b949c471d09a32ad431776b826ce05ed491ae1dfd52bad18ae7658f58d557c64a66b895dbfce76f1ecbb86791b
SSDEEP

24576:rY6Rig/Kl6eOPlq5Colc872EfDwEJOqDP6Pw:1z/15qECFDp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2495c537d8e95645a5b022c01867668a_JaffaCakes118

Files

2495c537d8e95645a5b022c01867668a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

USER
Size: 680KB - Virtual size: 680KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

USER1
Size: 351KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.USER2
Size: 29KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE