ba6b54421390bae4b6d73a041237c8d1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba6b54421390bae4b6d73a041237c8d1_JaffaCakes118
Size

5.9MB
MD5

ba6b54421390bae4b6d73a041237c8d1
SHA1

22a0ebaea5d20da213d9fbd499aca4e6b6a95411
SHA256

e84207c88d0b8db7b8a995f8e1c49dd18fd0e10b64a1000ee8be99415f24faf5
SHA512

157db35f9bf133d22307f145ed535219aaa59a1722811961500007d29ab8c565cb4286c6737c0725b241e686351bf18ad5da7118b736a1194ba7bb866c6e8977
SSDEEP

98304:g3PzVw1cPlGuiEHVgpwOshLsnCviEaIaSh1puA/5bP5SOks1g/uCwRh7cR0omBHU:g3eZIHVgpw/hLlASIAR79d1gG38vqAPn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba6b54421390bae4b6d73a041237c8d1_JaffaCakes118

Files

ba6b54421390bae4b6d73a041237c8d1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 376KB - Virtual size: 904KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.petite
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5.7MB - Virtual size: 8.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE