a50b12ae1dec6c49515d358aee1dfd23_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a50b12ae1dec6c49515d358aee1dfd23_JaffaCakes118
Size

105KB
MD5

a50b12ae1dec6c49515d358aee1dfd23
SHA1

82d041722796fd8f4eddc5b06de30028d1124661
SHA256

91a4875cce924415646c1ea0e857f202ba91f89b5e8038a7bda83107003dbc46
SHA512

8c639f7c607402a61c98a125f63a50a6dea2cd8fcdeafd3c91443a2d4149066eb66ea0934dd02c671f5995b3f5ed52c5d1e5134b553cd035ab3fd84baf3dfdf5
SSDEEP

1536:pvj468ZoztkB0/xB4VSLwi4E3yj64o3vZQao/rJ85nObb9:tjfkB0JB4VS/xULoRZOF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a50b12ae1dec6c49515d358aee1dfd23_JaffaCakes118

Files

a50b12ae1dec6c49515d358aee1dfd23_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 97KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

whzwuzg
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sdata
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ