6fe07def0f10cd3b0f18c59dc906bc91_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6fe07def0f10cd3b0f18c59dc906bc91_JaffaCakes118
Size

27KB
MD5

6fe07def0f10cd3b0f18c59dc906bc91
SHA1

34df82e2d4ba4df3e38a470d9b62f5f6dcd0d07e
SHA256

3516f2c7381edb914b5bb2cf6ef5150d7244edac174b4219baa71c75982196cd
SHA512

89a96e2cc97c36768fbad9a4ed486e085f02da626ae6f34bdc347567d6c532ff9c3dde7d2585180c3a5b40fe3d2840c38798f5508baf94c06919f9bad92edcb0
SSDEEP

768:3VD2XgWUOQxTtJRIzVP0/4zHSHWnVtQxJ4pOvHV6jZVY:3VD2YOQxrRIzdyHAVyx+p6gjZS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6fe07def0f10cd3b0f18c59dc906bc91_JaffaCakes118

Files

6fe07def0f10cd3b0f18c59dc906bc91_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

D=$c0
Size: - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

D=$c1
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

D=$c2
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lao
Size: 212B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ