ba152df1ad5721c5912b1076123263d4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba152df1ad5721c5912b1076123263d4_JaffaCakes118
Size

129KB
MD5

ba152df1ad5721c5912b1076123263d4
SHA1

43c88b41b041a24b4dc6e2fe46f7a19efa9b89b7
SHA256

0d5d4964b3ed45bf69b74e8f0b49663cbba6f25be6301f1db8376126efff96c9
SHA512

9fd510d8f6c8ce024deda9d9ca4296578d49b4ecd3f44a000eec8c3102df80dc201d2b9186bfa6a8e117ef24eb813cad25842e48805dc38e26df49c665121027
SSDEEP

3072:nc/US5hNEpCHkdf2gbgXmGND1oGR3sQuKBgw:ncd34FCmONuggw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba152df1ad5721c5912b1076123263d4_JaffaCakes118

Files

ba152df1ad5721c5912b1076123263d4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

et
Size: - Virtual size: 216KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5pt
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

g
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE