fadc97e92bdbcce3b06bbc7d91753630_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fadc97e92bdbcce3b06bbc7d91753630_JaffaCakes118
Size

613KB
MD5

fadc97e92bdbcce3b06bbc7d91753630
SHA1

0bb76d545f80909531fa60cce3d28f510196faf5
SHA256

662b581d5efc32e1c825554a580a2fd71e49709133ebc270360791826e86fa5e
SHA512

42a064af472ae4b7bcc3264063783d83db594e53611f13c524e3265135843b4fbb80d8c063816c19b92c2935e6896614294def570eb187826687ed063beee378
SSDEEP

12288:MMULkYCERaU8gFFobrGRY1/073VFIhjNXrFC43O:MFCERaU8gFcq7TM5Z/O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fadc97e92bdbcce3b06bbc7d91753630_JaffaCakes118

Files

fadc97e92bdbcce3b06bbc7d91753630_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 154B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RZWIN
Size: 583KB - Virtual size: 588KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE