852e89ced062f05e81306326766cca17_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

852e89ced062f05e81306326766cca17_JaffaCakes118
Size

139KB
MD5

852e89ced062f05e81306326766cca17
SHA1

219be7f2dcfca66c0cb6d8677d48998e99509502
SHA256

2cd99dbffaf761e02dfcfa9b4d4a707210436adef5b515697ef4378d16bac430
SHA512

29c93b48d1e8653403f141870757e674f176d7a13b322aaa22a41dcc58f0744b0556a5b3845eadd8ada28130380c3eca4bda019fb6704bf9671bc7d4fd360e92
SSDEEP

3072:bfSe6usWZOvR4iVSVTWuRLWh5ousYk5kLQN:7SNu9+RloVTWuRKhSusYk5kL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
852e89ced062f05e81306326766cca17_JaffaCakes118

Files

852e89ced062f05e81306326766cca17_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

972q
Size: 3KB - Virtual size: 208KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dvajaxrr
Size: 130KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

8i2
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE