4adece6847727cfb49a4500bc5dcaa86_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4adece6847727cfb49a4500bc5dcaa86_JaffaCakes118
Size

430KB
MD5

4adece6847727cfb49a4500bc5dcaa86
SHA1

d16189c5f28b89cc3552eaba7d3fa5fbf5bf617c
SHA256

1259427733032d3ef3ea479efdfd55c258f6c0f0f4af19bd7a75771f0c8cf74f
SHA512

0d379b802dae18b72c25e6112ef2dcf4f90a4bb78a7af2637cafc247a2690a1a84d4de375f552c00493fb1c6cea129e96b7eb9d60939806c18141684cae37c21
SSDEEP

6144:Np9/4lRm37h3FJpk0IUYvg7W/qWYF4XHINZaQJCr5x42LRRgPvSCsDr3rZ:Nr/KC7hVJJYYSioIZavrNRSHsDr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4adece6847727cfb49a4500bc5dcaa86_JaffaCakes118

Files

4adece6847727cfb49a4500bc5dcaa86_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 204KB - Virtual size: 692KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 13KB - Virtual size: 468KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wet
Size: 162KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE