69054fd396c4fe9436dc5e1adec64a2a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

69054fd396c4fe9436dc5e1adec64a2a_JaffaCakes118
Size

2.0MB
MD5

69054fd396c4fe9436dc5e1adec64a2a
SHA1

0275eeb05cefa5127aa35d8dc7b4abed3056b665
SHA256

845002598f0a6219d3817a316ffa41f11f56c7895b6aa030767290337ef6c4c8
SHA512

ae594d0dd96fab9287034047d5ed0b1e8fc0d108bb9956378e484b2f01ef2e3374c9428ed3969910da326039639eb7bd13f007fdf3af06599f8152ed5ea8c6c7
SSDEEP

49152:PjfMdTZyUfMdTIfMdTzHMfMdTRlz/QKMxMgTgF3tKhWaSjQ/5lKQ:PDgZyugKgzWgRlzYBME62g+v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69054fd396c4fe9436dc5e1adec64a2a_JaffaCakes118

Files

69054fd396c4fe9436dc5e1adec64a2a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

k9trlt.m
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

zer9becc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

i7.thstc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

oabsoino
Size: 908KB - Virtual size: 908KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

b0pmljv1
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ