86e24e73a532f6667637e3f2d715a728_JaffaCakes118 | Triage

Sharing

General

Target

86e24e73a532f6667637e3f2d715a728_JaffaCakes118
Size

1.7MB
MD5

86e24e73a532f6667637e3f2d715a728
SHA1

459057e84162cfd905e59e4ef81b72458816d5ec
SHA256

c98db899739b5cd840d263db99eefac7b52a2564b0eea784156e7165e889967a
SHA512

01131d1a5a23b0e110e27412aade240e4eaf163a28728d556cd9a879cca437b8822960fe7d8a9ce5535adfea66d5176957ec28c9ff6281e833cd5d7900189a8d
SSDEEP

49152:FYImL+DvgprQgC90To82zpN9w+2nZKxis:FbQ+vCBC90TonzpN2Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86e24e73a532f6667637e3f2d715a728_JaffaCakes118

Files

86e24e73a532f6667637e3f2d715a728_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 164KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 1.5MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE