e1fc26e606d9d543da18d4e6dc66208b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1fc26e606d9d543da18d4e6dc66208b_JaffaCakes118
Size

67KB
MD5

e1fc26e606d9d543da18d4e6dc66208b
SHA1

3e926888d81ccb7ba09b86d8a4189b26b3f40ee0
SHA256

4446996608fb537970e460c2a881efc66896038ee48b33ba33c180108fad09fd
SHA512

b0ba409ef95c7fade467f3f5116097d840dc1d64f4af432504f825217271b18b30c7e5be7e2b5be4df9b7407830000dcee9d9b8d9935eca6cc3839a3b5acef68
SSDEEP

1536:sCxxrepi17zvU72qelzzAGjYQ19a45XI2pf+5IF9Do:sCxxrci1Pu2qgff9a45Xff+a7D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e1fc26e606d9d543da18d4e6dc66208b_JaffaCakes118

Files

e1fc26e606d9d543da18d4e6dc66208b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.ficken
Size: 71KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ficken
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ficken
Size: 36KB - Virtual size: 976KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ficken
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE