bada39e4a26b249455bb1305aa41ce7f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bada39e4a26b249455bb1305aa41ce7f_JaffaCakes118
Size

468KB
MD5

bada39e4a26b249455bb1305aa41ce7f
SHA1

c4515800ad11c7c95754b04b0abab6809fd8ea3e
SHA256

b6348f894532df404a570b9a693308a81e772f71ffe8551af7365f48d991e8b7
SHA512

40f093d87d79720b8a08f488551a14d2ed8d024c07e67535eb4c728f4a802cd2ecbbce66a4c655f13c7679c865c3e2bbda1f8fa633f99684783925bd8b5ca282
SSDEEP

6144:fUCHUpg6qi0c+KevPcTht9ZxDNt+BHec5amcAEI98gWNlPTGQQm6agrdXVOd:fUC0bQKYM9jNt+BeWaHTNtTirdlw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bada39e4a26b249455bb1305aa41ce7f_JaffaCakes118

Files

bada39e4a26b249455bb1305aa41ce7f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 152KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 310KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE