6f1b02a85fb8d08f7984564c3ecf1311_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6f1b02a85fb8d08f7984564c3ecf1311_JaffaCakes118
Size

812KB
MD5

6f1b02a85fb8d08f7984564c3ecf1311
SHA1

fd994594550bbfc8d88061bb72ae762af070a9f7
SHA256

c381f36eeec7f8badb77e0f458952e90784f7c492603b9b667f831a439b87cbf
SHA512

4b90aaba4778ef4615f212271a14f2c7e1c1bbc04995e37f4bf3cad646014024838606b20a8d6d4ca8a82854b36375674dc1f8f34f42b919a329f15d180ebf1e
SSDEEP

24576:AQrM9PgrzctSkmD8p4x6OQJCIpTqUuF8txxeV:96o3cIkU8pA6OCFTIF8tXe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6f1b02a85fb8d08f7984564c3ecf1311_JaffaCakes118

Files

6f1b02a85fb8d08f7984564c3ecf1311_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 20KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 780KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE