5db744a01bff34fc7294edc7bf353d1f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5db744a01bff34fc7294edc7bf353d1f_JaffaCakes118
Size

2.1MB
MD5

5db744a01bff34fc7294edc7bf353d1f
SHA1

4b78425a6906ae1f63ae621ce213af70fd01f759
SHA256

567363ce1b6f444b6274121b1e6e5ffe58f9ea694452644f6e0add3d9399bb50
SHA512

b4e3e1f51d718807255c06cec019affc11c797ce05d0137ce885f194f0c4de5cf7b2c29c3714a425776cf3763d5300c14f4606884b9c3698a7483e6a4e0f4343
SSDEEP

49152:6urY5/WhMyGLIXu8u3SfGgT8Y7yZzzwxi6KZTJi:sWVGLIXu3SfbByZvwxL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5db744a01bff34fc7294edc7bf353d1f_JaffaCakes118

Files

5db744a01bff34fc7294edc7bf353d1f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

svchost
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE