ce9403419830d291ecfb464d83b0b326_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ce9403419830d291ecfb464d83b0b326_JaffaCakes118
Size

820KB
MD5

ce9403419830d291ecfb464d83b0b326
SHA1

745d8f1b93b691cf29504e2cbf60dbdb865de7a3
SHA256

0cd6632db0819c69355ec82627eced4aeb8caf6d80067a432e748d4f2436104a
SHA512

709b604673acf7403b9b40893d8a85bcccff013de26f116a7e17be11ab059c440380b89f9a358a715749b2a6cea60e887d73650643c8a0fc6abde88d0b9e805a
SSDEEP

24576:u/gYFfEvez+ZGk3/ExMPVs17XI2B1tzVQbdjP:ygXJE2+TTdVQdP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce9403419830d291ecfb464d83b0b326_JaffaCakes118

Files

ce9403419830d291ecfb464d83b0b326_JaffaCakes118
.exe windows:4 windows x86 arch:x86

06d90141d3fdab7f9e0de825e6c197f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize

Sections

dwsvbums
Size: 228KB - Virtual size: 508KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ppvrlgny
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ebqxrnxi
Size: 572KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

slcdbevl
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE