fac9edb3df539e9f4d89ed4b25e35d75_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fac9edb3df539e9f4d89ed4b25e35d75_JaffaCakes118
Size

4.1MB
MD5

fac9edb3df539e9f4d89ed4b25e35d75
SHA1

51fd7421f949248441260583cba7c555e3dc0d08
SHA256

c13372014ad3ab6ee4e8f43d83222e95bfb10c88cd8938b83c3ac8a4749b5c6a
SHA512

1508273f362cfc58a505afd695f5558bd6e31115febfb81f057327e30ca19755a38ee1acef2329f4d85cbfe2139ef2909584c9ea3dedcc8a86bf1de2833b4b87
SSDEEP

1536:WXVMptkQJBZNrPD3QsQPJB6Xw/Z4Ro/uz6M:WXepGQJhY/PJBGU4Suz6M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fac9edb3df539e9f4d89ed4b25e35d75_JaffaCakes118

Files

fac9edb3df539e9f4d89ed4b25e35d75_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: 304KB - Virtual size: 304KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data
.idata
.ndata
.rdata
.rsrc/1033/DIALOG/111
.rsrc/1033/GROUP_ICON/103
.rsrc/1033/ICON/1.ico
.rsrc/1033/ICON/2.ico
.rsrc/1033/ICON/3.ico
.rsrc/1033/ICON/4.ico
.rsrc/1033/ICON/5.ico
.rsrc/1033/ICON/6.ico
.rsrc/1033/ICON/7.ico
.rsrc/1033/MANIFEST/1
.xml
.rsrc/2052/version.txt
.text
[0]
[1]
[2]