dfa32a781813e18fadd31f5c7afa0fa9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dfa32a781813e18fadd31f5c7afa0fa9_JaffaCakes118
Size

2.2MB
MD5

dfa32a781813e18fadd31f5c7afa0fa9
SHA1

f91675493f1eb39f0474a718187990fdc15f7734
SHA256

04bd04fe79445e08b5c06b880f30592737f24fa7c5bcd0d1b165739231e8adf2
SHA512

219ab78a4a7e556b3037e7db370d60a4e28ce68a25489a6f2b3bf79cba1bd9eda2cd8c23004e37d4ab8af9c11163dc481272486bb30c0db9f2530e532e7e847f
SSDEEP

49152:7+HFTJ+eNUaZvvHX4NZ/5Pjdvb+HB9yKEgGUGGU1:7+lTtNdv3eZ/5Phz+HnFEvB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfa32a781813e18fadd31f5c7afa0fa9_JaffaCakes118

Files

dfa32a781813e18fadd31f5c7afa0fa9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.TEXT
Size: 208KB - Virtual size: 208KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC
Size: 9.0MB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Leem
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE