a79d09da09a4e4db39227cf07545576a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a79d09da09a4e4db39227cf07545576a_JaffaCakes118
Size

1.7MB
MD5

a79d09da09a4e4db39227cf07545576a
SHA1

425b4d1622f3c50c331460ab1d112731cbf96ace
SHA256

17f5f7682287796ae1511446245ac2dace4bd27e767cbb2a0f10b314e99557aa
SHA512

3eceaf9a8b4de2fc9a28f840278252fdf9b0bfdf4e644ed6b1f4f1f4d3113ae7e4ce819f0a024874592be83b02bd7547d2fb1a067427612f6abac7027a8b879d
SSDEEP

24576:WIETxATTBfHAENABXL3TBbcZBoHG1wi689D6ZxlQ/kCvyJpHiPjmM71E/+kSXD/q:XXBfHQBbDanJHWxGkumM5xxz/+FH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a79d09da09a4e4db39227cf07545576a_JaffaCakes118

Files

a79d09da09a4e4db39227cf07545576a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 315KB - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 1.4MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE