ebcf0e6807f7ef9c3ca93e18c272685e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ebcf0e6807f7ef9c3ca93e18c272685e_JaffaCakes118
Size

368KB
MD5

ebcf0e6807f7ef9c3ca93e18c272685e
SHA1

e77784661d503f4ad4207290dd3655e7da671277
SHA256

92821a639922d9dc3efc04e8067eafcb83dbfd57c97062dcda376522362fce33
SHA512

5ee7580ea84bb5329955a20f36e68e42ad61417ef96bc543af8bdb59e61ea3909dcff329a13344a49d6e05dc0dda018cdd9083dbad327c8fbbeb79b7ca7b48c7
SSDEEP

6144:I1fIOr8dQq6QEMzPDGfWiOrOnuiex/392wHgZ54fBvZ0RyX4NhsYA11UBTda:I1fIOrkbT5vGf5uiex/37m8lZby1AABh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ebcf0e6807f7ef9c3ca93e18c272685e_JaffaCakes118

Files

ebcf0e6807f7ef9c3ca93e18c272685e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

cyHTm?mZ
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

eKYeRw5%
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

KwYlIgyd
Size: 672B - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

^D*lX(xO
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

@uOY/Q[i
Size: 141KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

q7+n=x_$
Size: 72B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.mackt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE