5ecf38d486bdc755dbd54403be554869_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ecf38d486bdc755dbd54403be554869_JaffaCakes118
Size

589KB
MD5

5ecf38d486bdc755dbd54403be554869
SHA1

785891ed74d5e589288e414c48d46ddaa0f763dc
SHA256

03f71ecb9b2ffa301df4bfbe80a51fd2f15fc01ef4013364963b0533c85700ad
SHA512

f35641e6f17a2dc524025884e871bf7705117f2be1038109313f3f5578f5cf13999f3e836cdd8ec6c3b9b339e55e429138b60c3d2ff117f35b9b6ec7b5c2e848
SSDEEP

12288:LsKzZ9eAx7JPjKaRdgoPEve0YBlBjZnN5VWx3nPnD2v:LsKveAx7JuaRdga0YTBVQpnPnD2v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ecf38d486bdc755dbd54403be554869_JaffaCakes118

Files

5ecf38d486bdc755dbd54403be554869_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 5KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 58KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

623
Size: 497KB - Virtual size: 504KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE