ebdd0596209247b15e4aaf0542298ea4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ebdd0596209247b15e4aaf0542298ea4_JaffaCakes118
Size

5.0MB
MD5

ebdd0596209247b15e4aaf0542298ea4
SHA1

22dfa687800c487e645cb507e630bffc1340e18c
SHA256

1c48c7d01ef75395756bfa94d1efb3fbfe0fb7c72725b4369fb4f19952333afc
SHA512

274c37d474fc515aa9e6041b85f747f8a9b4c46ab14b7971a1bf5fe6f5fb2a447ce38e53c26745c5f3572be023cbfdcab5269ca57aaf1a0d525e346706d6f141
SSDEEP

98304:N5qMGciiKJrpSYmedxFc6uUR4ZYi3W9dcsSmY:XqMTiiaNS4dfc0R4ZYi3udg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ebdd0596209247b15e4aaf0542298ea4_JaffaCakes118

Files

ebdd0596209247b15e4aaf0542298ea4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pseudo
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mackt
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE