5a2ec425b70a35c43cfd5693b60bb558_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a2ec425b70a35c43cfd5693b60bb558_JaffaCakes118
Size

214KB
MD5

5a2ec425b70a35c43cfd5693b60bb558
SHA1

9549976fcf32f316eb28ffecbd792daeac3d51f0
SHA256

4ff4d3957b5d066cd69f6b4c92ef2e419a7e44de5a27b768701aec33bdc283e8
SHA512

4aeed6f4ddf707f31f3cff447e2f20b63e0212a0bcccd5d286b28eae209b5e85b423cd662da0a83052613041079ba14cfb5d0ccd1a31178d1c402f4e4cea9030
SSDEEP

3072:/+hIYNQTyWvDETsjw/wtSjcK+3/gYBR1hcyBw5haeST9tY41zRIgiY4uO:GhVm7EKwQSjk3/gMTyyB8h4fzRXF4b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a2ec425b70a35c43cfd5693b60bb558_JaffaCakes118

Files

5a2ec425b70a35c43cfd5693b60bb558_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 97KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 21KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 11KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE