fa48640f8eafbd10b24770a4c1857902_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fa48640f8eafbd10b24770a4c1857902_JaffaCakes118
Size

75KB
MD5

fa48640f8eafbd10b24770a4c1857902
SHA1

229ea2bdc18ff5b0c0ca47efc495f451fcc7f1ba
SHA256

1a5626ca80e1300419e677d3f303990db3884c5ec680d9f89d1b7e4c59ed3a8d
SHA512

be84679a59b9f301b2b7df3b19de83bccc233007f90aa5f102dcca9a402fdf8751f6486c0b4282d3001dc38b269c34a88e3a802e25f46eaee7f19a8f16daf5f5
SSDEEP

1536:Q8giKkPKF3tRaQ02dluEfsu31poVMydo2dJOTh:ZKkPKFyUeE0u31poVMy+eu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa48640f8eafbd10b24770a4c1857902_JaffaCakes118

Files

fa48640f8eafbd10b24770a4c1857902_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

��n�t
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��n�c
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��n�
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nah
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

*_�
Size: 146B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avc
Size: 512B - Virtual size: 349B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE