aeadd34ea56c183d91ef74290ca49def_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aeadd34ea56c183d91ef74290ca49def_JaffaCakes118
Size

356KB
MD5

aeadd34ea56c183d91ef74290ca49def
SHA1

18ea72e91d85474731af04751f9300e682efbe28
SHA256

45ccbc54eb85a488090ebb5789854513dcabec63cb389c655836ff6a6e5a3421
SHA512

1995719d5bbcdc8e336527ddded59ce9ea4460ce2da9ddab471c8bf1fe2705436cb0297d00dd7257fd1cb28c31052f117d106aa7e90b91ae291a3d9f3b955d2c
SSDEEP

6144:y8SOHPLb6Q1+U+X35maqDVFE57bwvQW89yYNXCkHw7BEyHbHKPaWQE/KLoU:2OHPL/RqJq7E57bwvillCOwY/KLP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aeadd34ea56c183d91ef74290ca49def_JaffaCakes118

Files

aeadd34ea56c183d91ef74290ca49def_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 192KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ