a568584642d632b10c7c03a99fb27035_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a568584642d632b10c7c03a99fb27035_JaffaCakes118
Size

2.6MB
MD5

a568584642d632b10c7c03a99fb27035
SHA1

b25944c7a30fdacc0ff2e1a28733a33ff3353870
SHA256

2f941d596122228670ec46bd756b62536b07ac2fdbcc63d2d7b6f3556f4a5413
SHA512

fd032e630878d190e277bab724616cfe677f92a2013df00bb8187924b3a4bfce9c1585fb3b66b0b29833d3f682df3ca22e53f40a6794cff55c22631beed7fd7e
SSDEEP

49152:Wfc2R2u5Wa+01LtuCDa3tMIOm10PpeWDpfauMKCW4p:OnpWk1LtDDa3tMIOm14eWNfauMKCW4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a568584642d632b10c7c03a99fb27035_JaffaCakes118

Files

a568584642d632b10c7c03a99fb27035_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 983KB - Virtual size: 983KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

Size: 32B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 484KB - Virtual size: 484KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE