a532fafe229d70994d4a1be648e4ab84_JaffaCakes118 | Triage

Sharing

General

Target

a532fafe229d70994d4a1be648e4ab84_JaffaCakes118
Size

791KB
MD5

a532fafe229d70994d4a1be648e4ab84
SHA1

a28638f41843571426e980e83026f173ee1d81c5
SHA256

1c6498d22b1dd3b73326234175dd2f577de6f4084f98f3bde564ca427a0a9332
SHA512

4f678f0999f21c4ebd0589c9f18ef9b67b41ac47c486e85d094f97cbb5f1a71011acf88cc4caad7b58f3edf00cd71a8e1c4bf48c437f23c3d3774f3fcec14f75
SSDEEP

192:mF3ZQoGOuDF6SQ/KstabhCx5EYYzmHxRV9yheDwLv7L+8KLjNNYbW7mTeCYcVZ:mdZnGOuVsIMYzmHxRqhoMfGLHR/W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a532fafe229d70994d4a1be648e4ab84_JaffaCakes118

Files

a532fafe229d70994d4a1be648e4ab84_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

wdfsd3s0
Size: - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wdfsd3s1
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wdfsd3s2
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wdfsd3s0
Size: 776KB - Virtual size: 808KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE