f647fecfda6bc469055df4a48119f064_JaffaCakes118 | Triage

Sharing

General

Target

f647fecfda6bc469055df4a48119f064_JaffaCakes118
Size

332KB
MD5

f647fecfda6bc469055df4a48119f064
SHA1

111a1c2fea67c02e0de8597f7fea2f3c35a0398c
SHA256

7d49e8bd52eb8c6aff222cc98e4502dfe1d3be546909f1720e2554df90f5719f
SHA512

fad2190402a3e6a90f9022b1f3ab9598e24a9462cac7f2d6029a97684f253534ef524d75d51e12846b9f872ef10cca69ea2d4f43868d576c3b7c2fb6356e4e71
SSDEEP

6144:w5ZUv/Z7QRbOCe2Qy8/yRoH2QuF0RBfqMJX+VzpMb6ZkqmcznrF63GU2vL7:w5ZUuRn8/yRx4BfqMJO7kqDF63GU2j7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f647fecfda6bc469055df4a48119f064_JaffaCakes118

Files

f647fecfda6bc469055df4a48119f064_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 113KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 210KB - Virtual size: 432KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE