f66d5624c3e89141d77e3c3ad66168f0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f66d5624c3e89141d77e3c3ad66168f0_JaffaCakes118
Size

623KB
MD5

f66d5624c3e89141d77e3c3ad66168f0
SHA1

104d153fc5b7b7764a72415b15bcd7e55bb4901d
SHA256

91abbf13ee26819eedbdbf916bc616ea5b3021c4c14d53d3d9494261d7da2623
SHA512

6be5eee6b4598fc44d391d2bc6a2c08e6a176dd24d785785b7dd55a0e1ef89edb09bb253f534c3aa4e2ced5ba9c7546dfa948aea7d323bd9699b59704cd905fd
SSDEEP

12288:DHa39XBEsZozOudepgq6i14T+QFKWfxPLA3+B9:D63JBEseO+uwi1mcWfxPLA3+7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f66d5624c3e89141d77e3c3ad66168f0_JaffaCakes118

Files

f66d5624c3e89141d77e3c3ad66168f0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 376B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 158B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zeus
Size: 595KB - Virtual size: 596KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE