a871450fd16d1915b3b3c3b4f5382196_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a871450fd16d1915b3b3c3b4f5382196_JaffaCakes118
Size

800KB
MD5

a871450fd16d1915b3b3c3b4f5382196
SHA1

e5f4a331e308b4947ab27733b197bd4aa95cb0cb
SHA256

e2d72136d040bfc2f2c72cb0916b06ef65b7cd57f9031540cb449b6fb0c25666
SHA512

4022871081c5d284732b8e8ed6bd96ad8cebc4bb67d303f54c103fb4b09b0a0eaf11020007c538f7f70b467f2ae0eebfc40f9b7c4534c54d5463e7f159c0ed62
SSDEEP

12288:W5/zpvrd3uN53DEMO4Kd2y3p3eYhxXq/GO1S/J5txihz34N+kVqg:Wpf3253DET4KdVUYhx+GNrbilcn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a871450fd16d1915b3b3c3b4f5382196_JaffaCakes118

Files

a871450fd16d1915b3b3c3b4f5382196_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iDATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

98652312
Size: 747KB - Virtual size: 752KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE