85c8887a0582d1a6a020a16b284c8762_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

85c8887a0582d1a6a020a16b284c8762_JaffaCakes118
Size

467KB
MD5

85c8887a0582d1a6a020a16b284c8762
SHA1

5b071edaf6f396edc7b6230ff1d18a4291ab1ded
SHA256

6942031888ca3b10fa83d776793eaac37d16e9e4743b969d83b598d37ffa976e
SHA512

02ac669ba19e8f6eef724913ce8f4a78bae3e1a78913791c33f193a654fe0e2262efb5309a53001c9b00d881ff136d3a531bb5b536dd69ddf60395c9aa451cd8
SSDEEP

12288:a4LZltG7ba10cIBbDK/lGRgOUqmq9kR6lhKXk78RkW+uCA:a4qbjDK/cRgOnmq9g63MkW3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
85c8887a0582d1a6a020a16b284c8762_JaffaCakes118

Files

85c8887a0582d1a6a020a16b284c8762_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 157KB - Virtual size: 572KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 289KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE