697f7cb8a84c21d771d5f40800161ff5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

697f7cb8a84c21d771d5f40800161ff5_JaffaCakes118
Size

476KB
MD5

697f7cb8a84c21d771d5f40800161ff5
SHA1

326bcb88d1a55aa6be33e55f74fe0346c17f713e
SHA256

4529c5ed1e9d4611d3bb6334b6acc2fafedf718ddfecf38913aad8f0e9fafbff
SHA512

9b2b089b17f347aaf797fe1b1e0cca6f19c8240e816d0aa161fa6aa52c593ff948fad63241b717bf930606a1733c8678a506277ef1cc9ecaec0b762f3fac1992
SSDEEP

6144:5fG7fwKFKjPeudVORcWJBuw1wq8HDy7vWp2B3haQAIHN5DcmCDIs:5u7fw2KzPdUJnc4vF95HNRs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
697f7cb8a84c21d771d5f40800161ff5_JaffaCakes118

Files

697f7cb8a84c21d771d5f40800161ff5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 944KB - Virtual size: 943KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 248KB - Virtual size: 30.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

stxt774
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

stxt371
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE