6a1dd354bb29bd381d021626e72e9046_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6a1dd354bb29bd381d021626e72e9046_JaffaCakes118
Size

169KB
MD5

6a1dd354bb29bd381d021626e72e9046
SHA1

6f66a9a333aed821127668718793cb4d29b671ff
SHA256

56168562508844dc355bd0481380a9cc625ccf816b8a78b9d2b24d9bc75f0035
SHA512

659313fa077167fbf2c5c728a8678138d28fb224657a63bf6ec7a8e06da5a01bd603c02f67d4a66bf4c8763aa4d42a51be834550ff787153a9daa10d3d6bba73
SSDEEP

3072:B8Zc0hTH53F/y0nzTd6UjIWVvn+oEyDCKCYn89hR3zA3l9WjZJzhPc7nC4sVUW8P:p0XXzxHhvBDCjlB3zaz2Z/c7n88N3B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a1dd354bb29bd381d021626e72e9046_JaffaCakes118

Files

6a1dd354bb29bd381d021626e72e9046_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text1
Size: 74KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

drmllbg
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE