859bb49e7ece26427f6f7938b7a3d2de_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

859bb49e7ece26427f6f7938b7a3d2de_JaffaCakes118
Size

674KB
MD5

859bb49e7ece26427f6f7938b7a3d2de
SHA1

a929d93acc069dcf9651340a8ad6b9bf1e06fdaf
SHA256

101f97dff996330819dc5c93fe53bc444969be6d7e830e0bee99c5b3934a467d
SHA512

2bf255c7960809929391fca215d03df57cc6ec5ebfa6dac7392a03e200503cee3a9e2f80e09538bd6eda5a466a4667930353f52234802d8ecb719939d8f70f60
SSDEEP

12288:Sn2UQrvR3PhGLxe0DTLLtpX4rhPlMKLnQATbB56atKAbC7NuaSVV:s2UKR3Pux7DrmPHnzVVspVSVV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
859bb49e7ece26427f6f7938b7a3d2de_JaffaCakes118

Files

859bb49e7ece26427f6f7938b7a3d2de_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

JuesKfHL
Size: - Virtual size: 800KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

GwmSSux1
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

M8J1ycgS
Size: 659KB - Virtual size: 660KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bPw3N8Ot
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vzWu7yzY
Size: 24B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Bx1ffIzc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

1zJpukFH
Size: 24B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ