5ebcc323ee2be61e601720891b18b766_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ebcc323ee2be61e601720891b18b766_JaffaCakes118
Size

299KB
MD5

5ebcc323ee2be61e601720891b18b766
SHA1

d304c70b697dccc749f28c4ad491c7e512607253
SHA256

f81e65b95627e949076931b885a7de71d839c895986e87fe5f371e17de74c9c0
SHA512

800069083d902f32e94d69d875bef6755df9ae1e6a3a7ea26aefd8f9cb817b5297dbb79273bfd68a2207f0a7664a2118707292cdc6ab67865e4f75ce7be271ec
SSDEEP

6144:HgQMvehVPDx/sCTDhZk/3oJfyz1O5LNrZEuXMaDayKokB6C+o8u8Fw:AIVP1RdefmeqLNrZERkackcC+Tw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ebcc323ee2be61e601720891b18b766_JaffaCakes118

Files

5ebcc323ee2be61e601720891b18b766_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.data
Size: - Virtual size: 784KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 255KB - Virtual size: 255KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hacksa
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rsrr
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE