bb487865260f8bc4833054aa32b161e1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb487865260f8bc4833054aa32b161e1_JaffaCakes118
Size

1.0MB
MD5

bb487865260f8bc4833054aa32b161e1
SHA1

4e00a2edbf387d7d4134a0e9d9549ad88494a4a9
SHA256

85bf58f2dfd00b7341f04e35a62090812f76efc13c1809759d4af854cc9f8915
SHA512

ef85de570002d721c74920c395f3844cdd0e6bc20fbfeac8c98c1da365c1e916e25d1f43c4a823c9413dca24d72721e35d63d6db9f52fca8e3f1168bf232a898
SSDEEP

24576:T+u2TWXUH/1H1cxpgdLQd2oJvtXdaFM0/t/jSJNnrN6SEa:Tr0W09VcxpoMTJZdGR/t0rNNr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb487865260f8bc4833054aa32b161e1_JaffaCakes118

Files

bb487865260f8bc4833054aa32b161e1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.TTP
Size: 980KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TTP
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TTP
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TTP
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TTP
Size: 52KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE