af59df5a7a31fb2631cfbbfb86408978_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af59df5a7a31fb2631cfbbfb86408978_JaffaCakes118
Size

16KB
MD5

af59df5a7a31fb2631cfbbfb86408978
SHA1

425f92ad3f9ae7918b86570086971d9dd3db2be2
SHA256

16ea78c9ddd7f49cb4eb35b145d58f47246debc16aeeb0363387baf7caeac8c7
SHA512

df312818597b972897dcb224ace2415912c0f4cdc9900b30864a43e6954f02bf933e43891b814433b88390f6de3b6120b712de56ec0854e8ebd48c4d4d830641
SSDEEP

384:W3hvCqFgHp8Y8kj3vG6VubzOxAUt8glxV09PCMQKp7:WZCqFg+7kcKF8EwpH1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af59df5a7a31fb2631cfbbfb86408978_JaffaCakes118

Files

af59df5a7a31fb2631cfbbfb86408978_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.packed
Size: - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RLPack
Size: 49KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2mr09d.h
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bga1m3ar
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

b9444krh
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ