e1a0bfbd17bae048369ad878f9c4b78e_JaffaCakes118 | Triage

Sharing

General

Target

e1a0bfbd17bae048369ad878f9c4b78e_JaffaCakes118
Size

7.6MB
MD5

e1a0bfbd17bae048369ad878f9c4b78e
SHA1

693f46478ad4126c9dda62b3c5d0fc59ad7706c2
SHA256

2456693d437a5b452a4bdc6a66dbb4dee8810ad65fa37be4134401e3a704523d
SHA512

138d8c3ffeaf39e486173dc4367ffae390118432c431d7b99b75235b577907809cf429b60c1291017fc08e2791696858df7fb661ecc74c575e3c7de185bc8145
SSDEEP

196608:o574e5Ty8eNDcXB62m1MqCtZANOvdccWKBC3UQI2R6e:274AHeUQeq9OvfBC3fAe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e1a0bfbd17bae048369ad878f9c4b78e_JaffaCakes118

Files

e1a0bfbd17bae048369ad878f9c4b78e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a065115d4a3a979e1137ce810a92eefc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LocalFree

Sections

Size: 886KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4.9MB - Virtual size: 5.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zwpjkkhf
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

msyaywvk
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE