6239b3cf2eae1da44d9d7d2530edf580_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6239b3cf2eae1da44d9d7d2530edf580_JaffaCakes118
Size

196KB
MD5

6239b3cf2eae1da44d9d7d2530edf580
SHA1

e65af2b112587966995ff177deb39ce273d44653
SHA256

af4b69030b9cd1d49ffb0b37030ae47bde63e3de0ff50b5768c379dd69578842
SHA512

ec7505d44e7748ff91742676c02b328cfadda10e6fe0fc1247f7d798d91c1e6c4dda27711aee17400a3455ea37f9039c9315185e4b0eeda56ad0e0e3c652f0fe
SSDEEP

1536:Tay7WDyV4BTBnL3yB/MFFgvdIYoHRGHPsEfVMKrC5W4ioDBnL3yB7Y:T1WDyWBdyB/MFFm0Hw/iz5CoNyB7Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6239b3cf2eae1da44d9d7d2530edf580_JaffaCakes118

Files

6239b3cf2eae1da44d9d7d2530edf580_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.zzzz32
Size: 4KB - Virtual size: 528B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.zzzz33
Size: 4KB - Virtual size: 234B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.zzzz34
Size: 4KB - Virtual size: 242B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.jInt4
Size: 4KB - Virtual size: 152B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ffff5
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ