faee7e0f973fa8c7ef29068602ed0c43_JaffaCakes118 | Triage

Sharing

General

Target

faee7e0f973fa8c7ef29068602ed0c43_JaffaCakes118
Size

6.0MB
MD5

faee7e0f973fa8c7ef29068602ed0c43
SHA1

fff4877d540fd837224604fc23f796b5c656c5de
SHA256

ead9b8a857fd77c7e0caa56a6eeece9b4f5376a3ac63a8c381f7a232fab327a2
SHA512

fecb9b5aeb576d2f9121fd966279013e60f5459a97d5357c8bc75a1de2487defb6496b3b139b46c81fcbd7c418538d3ab552fa1cca39e8f14942bb5f80d6b71e
SSDEEP

196608:cERae5t5bHC4TWLN4Vqm4fWXTPG2nz7irfq:cu55TkNPUdz7i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
faee7e0f973fa8c7ef29068602ed0c43_JaffaCakes118

Files

faee7e0f973fa8c7ef29068602ed0c43_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 398KB - Virtual size: 397KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5.6MB - Virtual size: 5.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ