6966cfcd9529e8fecd0bd84a566a210e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6966cfcd9529e8fecd0bd84a566a210e_JaffaCakes118
Size

214KB
MD5

6966cfcd9529e8fecd0bd84a566a210e
SHA1

5f0e291cf45d5623c1f31c29b0bdbc35f5a5de66
SHA256

c13c16e2dbf6aa21f5b176d6d6c704668758c14260fd8d80797c65baaec5e759
SHA512

182d4e4114a2f87b58e62fb67e049dadf7a62b3520d61965cf3461df1d4fb10e803cf47114054ab2b158972cd4f2b8a4e73ddaa5f46095a3110706fe91ea6b7e
SSDEEP

6144:x8t3Jkdy4oMNRDzAypvyMM+iJAznD7fYN5FkjC:o+447NRDvE+AArwvT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6966cfcd9529e8fecd0bd84a566a210e_JaffaCakes118

Files

6966cfcd9529e8fecd0bd84a566a210e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 97KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 21KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 11KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE