82687458f866042037c13697007ff09b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

82687458f866042037c13697007ff09b_JaffaCakes118
Size

26KB
MD5

82687458f866042037c13697007ff09b
SHA1

7898214502af43b876a57598c6eee7b745c97a75
SHA256

1d1a80e99a00ee02c7e9b05ae9dda4b4c0cb0d1c8c267a189dfc8a3785f8ed44
SHA512

642ed649cfae643bf00ce02b77bc1c5f3b03a420d6c1e0b6fe8cd7cc175edfc384fd6b3ea2f502ea384300fc9976290575198803616ef7ebafd0a70cd6b862e7
SSDEEP

768:DCKzySmJnHyAtKzCIFtZ+wmf1qoryWxfV+UHjst3:DCIyTnHgz3/ZFo1V+t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
82687458f866042037c13697007ff09b_JaffaCakes118

Files

82687458f866042037c13697007ff09b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

PEp0
Size: - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PEp1
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.depack
Size: 361B - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE