fa522c4c6bad9a6b1173c3cdb295564b_JaffaCakes118 | Triage

Sharing

General

Target

fa522c4c6bad9a6b1173c3cdb295564b_JaffaCakes118
Size

1.9MB
MD5

fa522c4c6bad9a6b1173c3cdb295564b
SHA1

1969703de708d139eb05c5bc3ed4c26f67b78719
SHA256

8e64f70e2c14e28f23433f06f1456584c7aea1ad658aa5661a2ba15e25b54924
SHA512

b8cf6efdb5be7bb5a5656610cba7a5a94ba82f96244ce1af181d6ca9880c7a0e0046dba8676576baff8afcf0d4830e80bde3bf872445fb31f57f74ebd5ae2949
SSDEEP

49152:HKA3Jm8yUKDseX2bOW/tdInO/2EvvALyaP:qAZmUjrbOW/MnOu4A9P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa522c4c6bad9a6b1173c3cdb295564b_JaffaCakes118

Files

fa522c4c6bad9a6b1173c3cdb295564b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0a
Size: 1.9MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE