849c30cb5b51e0f5fb1c52d42d39350e_JaffaCakes118 | Triage

Sharing

General

Target

849c30cb5b51e0f5fb1c52d42d39350e_JaffaCakes118
Size

348KB
MD5

849c30cb5b51e0f5fb1c52d42d39350e
SHA1

7d64b368091cc904db14165a5dbd624ecfbbbbae
SHA256

13e54615cf1e04caaa3e00d3128560e806d8b80c0343f6724c5766f924ac2544
SHA512

b0d859f2a7b428df9b98f2e61d01e977aae57c5b51b2a75d66bc53df1a6d8586821ca91a45bde632dbeabefa45b5c512db6469c5bdda75b2d1159d69f0fd46d1
SSDEEP

6144:+cSL6YYP6lEEanGHmNOl/6SrqqdwvP6bQ7yMP+DE827tIFNrwvP6bQ7yMP+DE82u:Zy6YfEEavNY6sB+6b7MP+Dd25kNE6b7L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
849c30cb5b51e0f5fb1c52d42d39350e_JaffaCakes118

Files

849c30cb5b51e0f5fb1c52d42d39350e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 49KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 9KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 180KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gogoloa
Size: 106KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE