fb01040b7781b6cae7052f6692657e73_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fb01040b7781b6cae7052f6692657e73_JaffaCakes118
Size

139KB
MD5

fb01040b7781b6cae7052f6692657e73
SHA1

1410f01b5ab9a5ffe65e2226399f99a108af1914
SHA256

0c0a65554cd849494656011d46b789e8c2e6a1f3a38555f9d14488d0179ff0a2
SHA512

90a8667e5fb3260d33fdb533c5e73e8bdc0849cbe297dd15de01d60a100d73df0c6e89431e1496963bd1904671d463f83ef45b8efdc2af0033dc966ff7c44382
SSDEEP

3072:zH+Mcv5JXXieDEvy1W7rkD+bnAIhRjaNj:zHl0ndEqgkCAaRGZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb01040b7781b6cae7052f6692657e73_JaffaCakes118

Files

fb01040b7781b6cae7052f6692657e73_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.petite
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE