a80b83a73fb0f7defa054c1273bf0802_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a80b83a73fb0f7defa054c1273bf0802_JaffaCakes118
Size

246KB
MD5

a80b83a73fb0f7defa054c1273bf0802
SHA1

f1f8a5de761d7183092412fa5a7ff9421ba35880
SHA256

254a3382d53b5f4ec1cc25928753de881b56336e6aa38fb9341d2e4574f05cf9
SHA512

5c4d4e2523c984776a1a1a1c2364a08a6bf7acd224dd68f156738c7fc9b17d71e4751dd7011464584b4f7013937dfafb9132d499b1d27812ea886bd21e2b44cc
SSDEEP

6144:IzLOMMqtl+0U/EYF/im2oM+RQLgq++h2DgXpNHZi/FU2:W3NtlVU/t3HMOi2Dg5NHZf2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a80b83a73fb0f7defa054c1273bf0802_JaffaCakes118

Files

a80b83a73fb0f7defa054c1273bf0802_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.Kaos2
Size: - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Kaos12
Size: - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

520mm
Size: - Virtual size: 26B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pe
Size: - Virtual size: 26B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pepack
Size: - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.PopSky
Size: 245KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE