aa5dd2c4250dc592b61842ff78169950_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa5dd2c4250dc592b61842ff78169950_JaffaCakes118
Size

578KB
MD5

aa5dd2c4250dc592b61842ff78169950
SHA1

b15505b40bf9209aa2e2e8868b31959baf696362
SHA256

5bce771a82bd4fd8aacdb247ced7dc2f2ccb62f19c533d40632debbe8e2d5087
SHA512

7c767e44c03c2edf1a4dde630660598be159aaaae3a5cbc89f2dbfcd36bec6d72eb793d77edbb91aad69c1c6af46874265c7c16894b43f861746089960d5db71
SSDEEP

12288:2RKqX9USVOnA0ytlzXNsMD5ide2S6gpr7Ijz5U7EytfV:VgiDmlzXOMDMdm6U7k5U7Nd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa5dd2c4250dc592b61842ff78169950_JaffaCakes118

Files

aa5dd2c4250dc592b61842ff78169950_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 1.5MB - Virtual size: 15.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.perplex
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE