6f9ac6250ed8b2f213d1b9c97d9eb1c5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6f9ac6250ed8b2f213d1b9c97d9eb1c5_JaffaCakes118
Size

1.3MB
MD5

6f9ac6250ed8b2f213d1b9c97d9eb1c5
SHA1

1fe5078f7e4d489f51db096551e91de670cb1ac5
SHA256

2709f5eb47807e7e40633ccdf03c42e8df55350e997dc9b01de6d6405e23728b
SHA512

4246cd9cb0a1d1da5455771c2a37413acc11a1375fcd7497f3570027427eaaf3b00b565d88328bdfcaeb7c7a33e2ace5b95a42b1f67f67cd6f539f0a408c133f
SSDEEP

24576:tgdXuqwIeeStU4gf2EW5A2DJr/kS4vGIk6v3HfZSPVKoz2E7/Eu8T1:ehw6h43Dp/wPHc2E7eB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6f9ac6250ed8b2f213d1b9c97d9eb1c5_JaffaCakes118

Files

6f9ac6250ed8b2f213d1b9c97d9eb1c5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

s"�HF�k
Size: - Virtual size: 776KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

\?��?.v1
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

+F�M.?�
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

i��#?�
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��kS��j
Size: 24B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ie??F�~
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

ژl�F;�u
Size: 28B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ