abdc11e1306499fa6ab829fc027cfd16_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abdc11e1306499fa6ab829fc027cfd16_JaffaCakes118
Size

72KB
MD5

abdc11e1306499fa6ab829fc027cfd16
SHA1

f2a61fc8029350ab5a91eebff8d178eac64fa2e1
SHA256

57dbc0be5828641f70abad69389c5c477f38fd45e94d5ab54c5da3e8db405d58
SHA512

c9b4267499d39a28042c6d064437eaf666ed7f9996b8ccf8e38b82dc873029d159404f0d4bf7569dbd80762c6dd1457a36da97f03d39a8d61c453a5f6327c6d7
SSDEEP

1536:JUNO0cuR7CPGKxaqddSssv+6ayd8QKy+aOvnqV:JUNQuR7VKpSveyaurunqV

Score

1^/10

Malware Config

Signatures

Files

abdc11e1306499fa6ab829fc027cfd16_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Code Sign

cf:cd:b3:2f:d1:d4:d5:e7:33:9b:bf:53:b7:bd:08:60:54:14:0b:1c
Signer

Actual PE Digest

cf:cd:b3:2f:d1:d4:d5:e7:33:9b:bf:53:b7:bd:08:60:54:14:0b:1c

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

NUmct
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

NUmcta
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xiao
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE