ee84361a73615c366eff4859daa7f495_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ee84361a73615c366eff4859daa7f495_JaffaCakes118
Size

150KB
MD5

ee84361a73615c366eff4859daa7f495
SHA1

5da23836df329444ab37a2d157fd0e158fd3f74f
SHA256

5b645d725e2edfbb3ffb1318bf1c1e0eb47a67c549a2c8a3f1818be6dd282011
SHA512

4defde7654c1a4dfc0fd9da6e504a19ccf31d0b8073f0a4c64384c15d07a80db3b004b5c6a29a6d46748a4f4dd79f24a774d200fb5a062519612c48319aec262
SSDEEP

1536:l6wrfAytxDqUiIL39M2V5EWkOqykmYMKNdRUGjTpIwhCO5LH6B:lL1NPLtM2TEhOqyhYM8RUGywUsLaB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ee84361a73615c366eff4859daa7f495_JaffaCakes118

Files

ee84361a73615c366eff4859daa7f495_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.idata
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

WEIjunLI
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE