8bab5fc0b56c758069f96cc446705555_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8bab5fc0b56c758069f96cc446705555_JaffaCakes118
Size

622KB
MD5

8bab5fc0b56c758069f96cc446705555
SHA1

ec186e0f66654c8303fef0446c2a14973a7ef3e7
SHA256

8e0c4c1110ad49646a1c87d88d912273d29ad449bf7bf691e4458d3daf1e1021
SHA512

682b3ad6cca65bd2bc1c7a6bab1712ec2ea680cf57072c84b09f926e7b41e1ec29f551607e11b591c0654c9e90477145f1d2faf594f321d3cd475c4d60a793d3
SSDEEP

12288:hQMXhTduwq1B8r5Qjisu+PuQeTAUCE8DeMPWk/VSdiNPF+jeXsImT2Js42c9:h7X+8r5kE+PuQ9qMOksYNPMGsT2Jr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8bab5fc0b56c758069f96cc446705555_JaffaCakes118

Files

8bab5fc0b56c758069f96cc446705555_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

gcbtdsoa
Size: 25KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

afioelok
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lbxmspkr
Size: 583KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mobucric
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE