a9bfb5f9fb5f0f3198961ed500f9a7bc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a9bfb5f9fb5f0f3198961ed500f9a7bc_JaffaCakes118
Size

83KB
MD5

a9bfb5f9fb5f0f3198961ed500f9a7bc
SHA1

289f4676842c23ebf0653c500b27ff9c9ef0dd89
SHA256

c44a61a1925649996e0e2ed2cef31e688d74d191a99fd5a827fab6714d4c1b80
SHA512

d49ff23a8aa1aa4d7a8d2403bbd2296767a12d0ca13bc036521ee89cf698bb4215b8c053500e7c66ead8d8171e66ab73a84465a156dd33a7165b234153b0ba8e
SSDEEP

1536:bWSnGaHslqr471zU9XsN4ZYiLh13CaGFwWREmGaYq5JhOr1LA5IU:bTnvHslqrOBAtcRPGkJhOrGaU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a9bfb5f9fb5f0f3198961ed500f9a7bc_JaffaCakes118

Files

a9bfb5f9fb5f0f3198961ed500f9a7bc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.MPRESS1
Size: 69KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 2KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE