f5e286219b3661a9e3756567eb253069_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5e286219b3661a9e3756567eb253069_JaffaCakes118
Size

5.3MB
MD5

f5e286219b3661a9e3756567eb253069
SHA1

476eda15af9d04a34e377a36770ee358315d5a37
SHA256

a368130c8dce57ad46cca6d0f4aa4d9f275b0d59a124e5a96958093a8af126b1
SHA512

042d37f7fa54637437e5280d7d5132b4f9a5b052d0a6b418412e55fad9e6e9ffec689dcd1e587eb0340375c273545f8678bf42d3e1b3b0e97275eeb4689b1a2d
SSDEEP

98304:crdloBCCl33PQG9e+wlB2X+Bp1NJckz2vrI:cktl33b9nwH2X+hN6W2vrI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5e286219b3661a9e3756567eb253069_JaffaCakes118

Files

f5e286219b3661a9e3756567eb253069_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 972KB - Virtual size: 972KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 36B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 310KB - Virtual size: 310KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ