a80600742bd0c47262b99d0fb6571714_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a80600742bd0c47262b99d0fb6571714_JaffaCakes118
Size

50KB
MD5

a80600742bd0c47262b99d0fb6571714
SHA1

64fd05b5e85f514020a95705604ac9dab8ac1bee
SHA256

81eac449f6083a2aa75e75a99b6e324a0182b1445695377f3af2df9240417cd9
SHA512

39841c3f54e2f6ef02fbf81458cc0cb75da3b0d1366101a9b71be7feedf1d739fd2daef64b55a9ad7f290c4f9598e5604505690dafa2b335c858300c9892f57c
SSDEEP

768:w9QcU0XsLIC4iNB3V0OK4V8D+q293WrJGOI3lCBha3Vg3t3XX/ddEU4DArYb:w9G08Lf4iNZBw2uGlC2FIlX/ctAU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a80600742bd0c47262b99d0fb6571714_JaffaCakes118

Files

a80600742bd0c47262b99d0fb6571714_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dswlab
Size: 534B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE