e18e412999f37c53c8962f09fca0e86c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e18e412999f37c53c8962f09fca0e86c_JaffaCakes118
Size

997KB
MD5

e18e412999f37c53c8962f09fca0e86c
SHA1

aa8fb64f531272b1ee930df4db5b76d5f03104ba
SHA256

00fece926f256094509bda999506e8afd2beb07913821c85b0b614e144c11f5e
SHA512

159253bede44b8ed220880c8e4731c3ba4e6e24a84f1b1326d02ae06751705ae2d0e1f007bc60c3f31ea77b2d96110f717cbffdbec2a3c88fa9dd90e08d40a79
SSDEEP

12288:hH70EFt5JC8cQ7GmYYV2zuW3Zkb/6XXP:hH5CHMGYVaudb/6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e18e412999f37c53c8962f09fca0e86c_JaffaCakes118

Files

e18e412999f37c53c8962f09fca0e86c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 237KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 109KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 206KB - Virtual size: 416KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ

.reloc
Size: 346KB - Virtual size: 348KB

IMAGE_SCN_MEM_READ

.adata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE