386a93868c93e58c832f51832cc76572_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

386a93868c93e58c832f51832cc76572_JaffaCakes118
Size

324KB
MD5

386a93868c93e58c832f51832cc76572
SHA1

f20d864687dc592fd71ad9c396ae212ec13a64dc
SHA256

799b5452036f090f0a67cd49a786af32aae21c32d5027960779530ca4481a5d3
SHA512

cd28acae27c416169e06c83fd7225dcec99d74dc28f91f30fbafad0340032296391f167adff75088e29c071911e0b2c33710d19f25ab89ee3dca9622b5d7a921
SSDEEP

6144:AsLO0lmwBCrWlfI8hCv+5KvkejmA0QUi1dK/L1svYXh+0EHFBR7UAtJ:AQm8PAtSKvkcmA0QC1svYXhMHxoQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
386a93868c93e58c832f51832cc76572_JaffaCakes118

Files

386a93868c93e58c832f51832cc76572_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

Size: 292KB - Virtual size: 952KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.x01
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yassine
Size: 16KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE