f9db1b4bd41d5ad9a563daf01de826b9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f9db1b4bd41d5ad9a563daf01de826b9_JaffaCakes118
Size

5.2MB
MD5

f9db1b4bd41d5ad9a563daf01de826b9
SHA1

90c5b70b5cd97bf658c61e568881c858ffca0b1c
SHA256

dbb7b5e409d1e57d6b8c13f8e7ee670c633fa507d02bbfe5894d85c11b51068c
SHA512

d94a7854d48d55d2239ed6bb2b79f6afd1369bfc1be4a4357015f0303aea033069acf4d3ff00b7e1ac3a1d23087bd090e6a0b1f8c3ce3f0dcc8497555bfcce1f
SSDEEP

98304:R+q/b8uvMmxABZOO1MiAIhmjq52GIRzCtbc650kCiw0uaf0XD/cO4gw5lY:MqjD8OgJesNmetbLK0q3N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f9db1b4bd41d5ad9a563daf01de826b9_JaffaCakes118

Files

f9db1b4bd41d5ad9a563daf01de826b9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 746KB - Virtual size: 745KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 36B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4.3MB - Virtual size: 4.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ