fca79ea526a6bfcf9ea39f1d5c291824_JaffaCakes118 | Triage

Sharing

General

Target

fca79ea526a6bfcf9ea39f1d5c291824_JaffaCakes118
Size

1.6MB
MD5

fca79ea526a6bfcf9ea39f1d5c291824
SHA1

8e79704bb92ad18baa3a90433fbd62138f28aa07
SHA256

d0843ebb1dcc402111f3b9b8443dfead2b61eedd566f508f16653a609a11e48e
SHA512

578ec237b0fa66591aee04b879afce64cffe0fc447117928253e2db216c6e7b0fda625f8e5de74b4918680ebc36c93ed45f3fb880b39040497407b90ab42f9b1
SSDEEP

24576:LZgownkGvQW/BwuFgGs2R+osEbmUZ84cxF4dgmlmIYPGJ6q1e9tSdWpvFr3GLK:CZkOOo+oexxbmYtPGJz19kpv4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fca79ea526a6bfcf9ea39f1d5c291824_JaffaCakes118

Files

fca79ea526a6bfcf9ea39f1d5c291824_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 20KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 780KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 788KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE