410cf5fd3e2cc07d24eb3d52c57f7be0_JaffaCakes118 | Triage

Sharing

General

Target

410cf5fd3e2cc07d24eb3d52c57f7be0_JaffaCakes118
Size

885KB
MD5

410cf5fd3e2cc07d24eb3d52c57f7be0
SHA1

b97f24edaa8fedc9647fc85f71155c34982356bc
SHA256

a0f65d080421411179bd7a309241041c59e7f6146b582ee55c206bd8c48832c8
SHA512

d6c5bb3f5a94b376b11e7fadc6e1bd664ad59a3064d005ae29dd5e120a3b6d378fe20dac5636bac589814aa0a5a0ada72be358dd2cf05a35647af5a37b706e7c
SSDEEP

24576:nKM4XD87wiaxWkDBtgtz85+Q3Y83XUL4gRodKx4:nKxi7kBtgl85/3Y83kL4TKx4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
410cf5fd3e2cc07d24eb3d52c57f7be0_JaffaCakes118

Files

410cf5fd3e2cc07d24eb3d52c57f7be0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.TTP
Size: 834KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TTP
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TTP
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TTP
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TTP
Size: 48KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE