eb0d0ba926afd56eb18071b8552368e5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eb0d0ba926afd56eb18071b8552368e5_JaffaCakes118
Size

6.7MB
MD5

eb0d0ba926afd56eb18071b8552368e5
SHA1

6b8b49fb1b1025c15047204eb359861b4ea4c40b
SHA256

9d9b77f33585fde8d65ed01bf117d2747451f89ece31a778a9cf25b0da80799d
SHA512

3b0c0896f057d65233bad7fdb060f43e25db3e8b854d92630b56208a304ea5eb72c64e409445b3a73fd026411722e2c572f566cbb35bc8b8267725815d271026
SSDEEP

6144:vOh/RYQHViig8L3KNZ67IFw1AUDvPVo0MQd+tcEoSMEmZ53hVPoJGVePTc00E55s:n67IFw1AU7qTQd+6SGcJNI00q5g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb0d0ba926afd56eb18071b8552368e5_JaffaCakes118

Files

eb0d0ba926afd56eb18071b8552368e5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.packed
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RLPack
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

l17dqtyq
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ees2asa3
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

l8ew0ds3
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ERLPACK
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE