e1bcee6a6b91cf73916e99d5eeb12baf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1bcee6a6b91cf73916e99d5eeb12baf_JaffaCakes118
Size

313KB
MD5

e1bcee6a6b91cf73916e99d5eeb12baf
SHA1

4bafebdb78f7123f5ba1e33437d950ccc4e821e3
SHA256

58c0011ceeb075c9c2a4ad4f64141f52069c1b4f8408b7523dbc44a28a188fc3
SHA512

8ecfc23552e7c404f1c98bfe84316da58c0d10dc9fdf0cbea847bf46cdcccd539f64df9e4657b820e91347a089fd22a6be7a81163bc55ba3ba1e2a7b13d92530
SSDEEP

6144:waPdK9uW+fW7UNOU9+s9x7XzrCFasjoSHgbRfD4cNhT9PKb5FN:L1r3fW7UN5kALzr7sjowiNhTpaFN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e1bcee6a6b91cf73916e99d5eeb12baf_JaffaCakes118

Files

e1bcee6a6b91cf73916e99d5eeb12baf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

hpeo
Size: - Virtual size: 560KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nywl
Size: 62KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nnywl
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE