891e006d4a34d2c8c411a0979c0f3520_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

891e006d4a34d2c8c411a0979c0f3520_JaffaCakes118
Size

2.1MB
MD5

891e006d4a34d2c8c411a0979c0f3520
SHA1

a8c52dbfca1c2d5ed1301a08e277ce0203e387dd
SHA256

0efbc4c0461201f57240ed418a86b1bffab6b88484fc91b9a3ea50c029a94948
SHA512

4f2b9379b10b09df5958ceaed7fc90cd2ef2c66851915e3a3c9f7802224aae66587af516c5493c5e0df4121cbab075df65643055410825f33ff22961291b378d
SSDEEP

49152:obYAey+IVPatPiLQ8x3uy+2ulipHeXJZp+alx:QYAeoQiLPFujzliWJPlx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
891e006d4a34d2c8c411a0979c0f3520_JaffaCakes118

Files

891e006d4a34d2c8c411a0979c0f3520_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 6KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Servise
Size: 2.1MB - Virtual size: 4.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE