96df8f7a9e154a3d3d66c58441db2eeb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

96df8f7a9e154a3d3d66c58441db2eeb_JaffaCakes118
Size

323KB
MD5

96df8f7a9e154a3d3d66c58441db2eeb
SHA1

3462782abfa6083628b64b4ab3a2d81235bdf729
SHA256

52215b0f77fcc0a243c15945a5069760e3a108354657ea7bacada1406b98a4b2
SHA512

1962a491d30e7d1453854828eef9ad847f5464951e93b473c8e8dd11233071fb145d3160844c91bd7befd655503ba84c2137dadd566fb471a8c5932058c69cfc
SSDEEP

6144:t/Ro+Y+cEv0piUeJBqLEoZGjtiVSdYQOl/oC08bNBZDEEtnZ:RRZY+fv4iUWILPgxsSd4r0whDEyZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
96df8f7a9e154a3d3d66c58441db2eeb_JaffaCakes118

Files

96df8f7a9e154a3d3d66c58441db2eeb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.styngat
Size: 308KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ogmnxwi
Size: 5KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.heswjgr
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RPCrypt
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 511B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE