5e270de6defb26f0c147dff32c871168_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5e270de6defb26f0c147dff32c871168_JaffaCakes118
Size

149KB
MD5

5e270de6defb26f0c147dff32c871168
SHA1

b9713d95d5821c2acad2125ab77e0d40e5bc6134
SHA256

0a1ab1bd60eee42a5dbcd4fdc3a0d2d218de6e7f34a409c36f91db24448244b5
SHA512

7d9be44e3df7be4252406ec995206b3dc47219fb888255adf8a4306b8dfdfab444faedecf03847f717c6d2ac78e858901e8db44090b784d26187f4eeb6a79780
SSDEEP

3072:B+QiMQjdyYlp1DSbzx37rTKhMWz4DLtwBqnTevgqhC5lAa:Bodvp1azx37rad4CwbqhCYa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5e270de6defb26f0c147dff32c871168_JaffaCakes118

Files

5e270de6defb26f0c147dff32c871168_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.fvrsci
Size: 1KB - Virtual size: 80KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.v$n36i
Size: - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zwyweg
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.packed
Size: - Virtual size: 3.0MB

.loader
Size: - Virtual size: 404KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.engine
Size: 146KB - Virtual size: 148KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE