ee9524e9b9394c521c334fd6be175e00_JaffaCakes118 | Triage

Sharing

General

Target

ee9524e9b9394c521c334fd6be175e00_JaffaCakes118
Size

299KB
MD5

ee9524e9b9394c521c334fd6be175e00
SHA1

4d6d0f45992561a84b3c460bed976863835dc653
SHA256

f14806a24e4f4eace1110c6be84ebe29cf7acdc907fca122d327047fa81d9e80
SHA512

fa6ee593cb6a12e745656f2a1d9cadba5c5cfb58437cf8fadad547c8b3b325fbe92cf4f3ff2d96fb3527d23cb781a44fcc818c044240a31d50f8b1e3525f264e
SSDEEP

6144:IYEgLYg3lWdERWMVbhbqOT+1DV21QpinE2Y7oCoVgm4+COaZF5FRk:Xh5lWdEk0vT6h21QpbopVgm4xO4FXK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ee9524e9b9394c521c334fd6be175e00_JaffaCakes118

Files

ee9524e9b9394c521c334fd6be175e00_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.data
Size: - Virtual size: 784KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 255KB - Virtual size: 255KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hacksa
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rsrr
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE