fb1cafab795fb39da989087682caf6b3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fb1cafab795fb39da989087682caf6b3_JaffaCakes118
Size

128KB
MD5

fb1cafab795fb39da989087682caf6b3
SHA1

c9307a81a0fe8774a96358d0e37831c712b0eded
SHA256

addbf6879bc577f2c2fade344ea72a2fae5d0c68c2ed69c677dfc6cd8c984233
SHA512

95261997a7cc1801a3922381a2082c0b6bb8fd3ab374337400a25527ce5d17a028fdefd912530f242c5206ed0c93bb9cddad8a9e88456a168b838ebddc50d7d6
SSDEEP

3072:Xud3nlA5SL6u3SNv8jl6goBbiz7UQlOltEY+Nqli:eFl6SL6uCWHAGpn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb1cafab795fb39da989087682caf6b3_JaffaCakes118

Files

fb1cafab795fb39da989087682caf6b3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

n8gt9sl
Size: - Virtual size: 216KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jk
Size: 123KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fowf
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE