5c522b16bf88ce4cc68056370d43f51d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5c522b16bf88ce4cc68056370d43f51d_JaffaCakes118
Size

956KB
MD5

5c522b16bf88ce4cc68056370d43f51d
SHA1

e15eaea8a1e1612ab88cfdbae97c7a9ec4c3259c
SHA256

428efe4f3da59c49d05a1dc1d7b50dfd8838a44e96279f3fd6d43c2932c432b0
SHA512

f2e58f93ec8509c7b6cb4f15ec49685c9e1ab6274371f53f7b89ca8751744778b5d3377e5027bbf2d4b0d4a7800c4377fb19e9677e7dbf833fc56e7079465caf
SSDEEP

24576:5X8+FSUITFJXDNU3pLgh/N/5vivD2u4btn2krqumY:5sWIfx+p+V/5ar8trj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c522b16bf88ce4cc68056370d43f51d_JaffaCakes118

Files

5c522b16bf88ce4cc68056370d43f51d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 936KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE