f5a38d98c94c92ecac516c776746d619_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5a38d98c94c92ecac516c776746d619_JaffaCakes118
Size

212KB
MD5

f5a38d98c94c92ecac516c776746d619
SHA1

0faedb3ac7c92481bd6cf2b4531c18211dfc6d50
SHA256

ed5095f4701fdcf9ce2b9ae11b1b95a0e89547ec1c5977ec7ba1689cf0aa9a7b
SHA512

9bd77f64a58865799f9d3905fa682abb671d76457986ec154b02d5504a646972b999921d7c8792c3b3c722341e340b84c027eeb707650cb59df7b0c537dcdc84
SSDEEP

6144:PibluD9l6cqBeOfv7M9Cq1QSz2HwrJl+8iiVc1PXGSapKzs:PiblGr69P7M51OH2J9VO0y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5a38d98c94c92ecac516c776746d619_JaffaCakes118

Files

f5a38d98c94c92ecac516c776746d619_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Bzqfq
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qkiB3K
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Kty7
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

GP
Size: - Virtual size: 30KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

I1Opisp
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Bceo
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wcRPy20
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

iiUI1geW
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

V80Q
Size: 162KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE