8ba4157d6300af5a1b14df537e15ce0d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ba4157d6300af5a1b14df537e15ce0d_JaffaCakes118
Size

1.4MB
MD5

8ba4157d6300af5a1b14df537e15ce0d
SHA1

8e0cf19fe67764fa43838c2efb9e0af6e0da8226
SHA256

df33f52f7ced4f1e21459676d6010ecafb16da9d0f4f120e8380a3d560e0a9d9
SHA512

828291b07fb54ed1ccfb61ba810e38c4cd66c12080ee5460eb692a4eba5f7095f7342a4de840b0649e5ab38c248f2f2622041fe38396eb5e4a8fc202ed10ca47
SSDEEP

24576:KmBjpdX0TwAlQM/zW8IORkqLA9YXEZf1/mi9JfCz7J533WFtKJWY0q09Pw0b0:KEfX0V9/zxdkh9YXEvJfCPJ533WFMOIO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ba4157d6300af5a1b14df537e15ce0d_JaffaCakes118

Files

8ba4157d6300af5a1b14df537e15ce0d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 20KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 677KB - Virtual size: 648KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 758KB - Virtual size: 760KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE