8567ee36595d0146e22e00fc86756292_JaffaCakes118 | Triage

Sharing

General

Target

8567ee36595d0146e22e00fc86756292_JaffaCakes118
Size

103KB
MD5

8567ee36595d0146e22e00fc86756292
SHA1

e42d386bb6a6259bb04d7adbabfea09b83fac0b0
SHA256

96b67484ae8d09b496c69e1f7023ebb74087a16558f2db5f79aa1efe8fa5a404
SHA512

a67cf423ed2efd43964bd97361e4267b796790c7821bf82b482d4a87d842c74aebe0f3a7b9ffb28805f5c1e2faed1b5c039be0d3bf34f11a008e252f058673e7
SSDEEP

3072:ZazlvWE9BJ3+ReJczpcw+Aka6LTuEzfGB7S2uWRg:WlOE9BLJWp1+Aka6LKEzfGB+eRg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8567ee36595d0146e22e00fc86756292_JaffaCakes118

Files

8567ee36595d0146e22e00fc86756292_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

fmv
Size: - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fgdz2
Size: 102KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

c
Size: 811B - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE