f50d79c7c3eba505fc781da6d48f0ead_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f50d79c7c3eba505fc781da6d48f0ead_JaffaCakes118
Size

424KB
MD5

f50d79c7c3eba505fc781da6d48f0ead
SHA1

1bdfe05de0ea5a8a8f0b2c9f3c2f299eed6b4b04
SHA256

4f420b9377dfa3158d469bfc010bbe02f9ff1a408f8219e73b674a4fd8f3626f
SHA512

1a2a28a30ce9a611f0da5da7a0f49a154753fb0e2209a662fb5d370a034d4925dc1fc551abff52b506b720f9bcc2a496aa0c6043bd10a7f8fcc83e847783b3ec
SSDEEP

12288:P6/DdQHroPTAwpwXQsBPTeoG0HhDtdC2Cp4JSErXDm44Cr8Qf4aI:y7WsPkA8QsBPyoG0HBrC2zJSKDmY34p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f50d79c7c3eba505fc781da6d48f0ead_JaffaCakes118

Files

f50d79c7c3eba505fc781da6d48f0ead_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.code
Size: 1KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 336KB - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 697.0MB

.rdata
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE