ff684fd0a73c869cd98d27d10702012b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff684fd0a73c869cd98d27d10702012b_JaffaCakes118
Size

785KB
MD5

ff684fd0a73c869cd98d27d10702012b
SHA1

f5722dbd3b410d8cd5ff4927f6bafbe576819e0f
SHA256

1c862364bc68cd074aa2f4e9dfee8e6adcba8988ff19f37a4a549b21ed2d1423
SHA512

fc8a84bad18a28bb2fac346357eb873055eff515093cdf5cb5697e494b2755e1affb06058d40f57664b6f384b8c0d6b9f6c4567c9fe5635f6b55fb4ea4c5e6a6
SSDEEP

24576:ScAW3jWvaRwwhYDwB37EXcrOAdN7+/R+VsojifrUeJ:SBW3laG37EG7+/RID2fgs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff684fd0a73c869cd98d27d10702012b_JaffaCakes118

Files

ff684fd0a73c869cd98d27d10702012b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SERVICES
Size: 731KB - Virtual size: 736KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE