abdc98f082e83692b07ab87ca1b0008c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abdc98f082e83692b07ab87ca1b0008c_JaffaCakes118
Size

3.8MB
MD5

abdc98f082e83692b07ab87ca1b0008c
SHA1

4e161cf592e8f11c9a4e060b90d0096d6281fa36
SHA256

8f8dc14214330239681a33a99bdf4078ab8a7e96126163c08c0c1588b8a9e6f2
SHA512

9be92c2d41014088ca5f30342c7ea4e031683e2e8da08393fe272e999d4eb09d3a245f08ff50c25f82e6431a68012d259b2cdb65b959343507c6f97feaf8a558
SSDEEP

98304:UVGnGYuXzoLCii+0gYp6Fikc/fJUKmC4dqWfe7d/Nff/LxF:cCMQav5iAW9StF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abdc98f082e83692b07ab87ca1b0008c_JaffaCakes118

Files

abdc98f082e83692b07ab87ca1b0008c_JaffaCakes118
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

evj;%:>Z
Size: - Virtual size: 446KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

v)HHr$`n
Size: - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

=\^7cz`d
Size: - Virtual size: 795KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

`0[<3)a>
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

J;2Um8DI
Size: - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Z7V=Vl3-
Size: 5.9MB - Virtual size: 5.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

h@yss6V/
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Fa6*R\b]
Size: 512B - Virtual size: 469B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ