a609753239f48bff888fbd1d59ed8731_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a609753239f48bff888fbd1d59ed8731_JaffaCakes118
Size

136KB
MD5

a609753239f48bff888fbd1d59ed8731
SHA1

196a4fd3ee5e19736333554547bb6ca367dd6072
SHA256

d6eee9e1dc70e92b56231dbcd8e3b5111cb9a2c3decb9b383c09c79ef8e81d95
SHA512

8af82874232aa9c31e7777dfb2e1cfdf113e03ddbd5f975a446bf827307ef23b6a28873a6f6415d4ccbc29963d3eb90631e4c6883b99ac9cb6c91f04f74e8788
SSDEEP

3072:sRnYp9cIMnhkMDlbLknu4U1uwg5aB4fwaCUgjBOzsIH:MYp9cIMnhkMDhjPU351fwaCUg0T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a609753239f48bff888fbd1d59ed8731_JaffaCakes118

Files

a609753239f48bff888fbd1d59ed8731_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

fu.kkkkk
Size: 36KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

masdfssd
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dfsdarad
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

holaaaaa
Size: 737.0MB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.newimp
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE