ab82870272aef9612497bfb9fd84e6e4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ab82870272aef9612497bfb9fd84e6e4_JaffaCakes118
Size

49KB
MD5

ab82870272aef9612497bfb9fd84e6e4
SHA1

d8b58f9e505770d3b0244ae7392e41a2fdcf3221
SHA256

e7ee12ac048062ed7d33f9afad4da1ebe2b813ed079ab310508dcde8512642bc
SHA512

1e2fbd0aae832dd0d793c9ea557ee37946efe738039ca48a3d06c6c633246504b86044e52977a0d00a69f3f0f10a3e96b41ec9cf7f8af0646e5c47766979fae3
SSDEEP

768:ogf+QNdwoFbObt8kqRck3j1gleaOINFDz7z5/yTpuamtc7O1:zGOFbg8kqbjq0aOIbDz7zQTpkt46

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ab82870272aef9612497bfb9fd84e6e4_JaffaCakes118

Files

ab82870272aef9612497bfb9fd84e6e4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

�ZR0
Size: 9.0MB - Virtual size: 56KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Z3R0
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc_
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�A.Vi.RA
Size: 9.0MB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�F.U.C.K
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE