df0f1cfa389c07b99c9aa2070668ad2d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df0f1cfa389c07b99c9aa2070668ad2d_JaffaCakes118
Size

677KB
MD5

df0f1cfa389c07b99c9aa2070668ad2d
SHA1

c1af2b5549b76ba5c8c1e326f46713ab94937f4c
SHA256

56cf8f76786f4a848ea02f8b21edd6825e41231f34369d38bec3c0fda1fc3e96
SHA512

e1f2f3dfa0f9b62a43b906c8c8d4846626e4734927e67e26af56db830f0ac4b795ee42cc699e6aa72941342e291ff85cf971386c221ff1ab0b78a77b2d88aafc
SSDEEP

12288:PihrHuc8NPCNizDHveZu4JdaX+uIevojC30Uki06GUVcU:P8rHIPycDHvou+cHv0/QVcU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df0f1cfa389c07b99c9aa2070668ad2d_JaffaCakes118

Files

df0f1cfa389c07b99c9aa2070668ad2d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

574GHDFG
Size: 624KB - Virtual size: 628KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE