ff69fdf8aa607a9ae7542d2a1b921731_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff69fdf8aa607a9ae7542d2a1b921731_JaffaCakes118
Size

1.1MB
MD5

ff69fdf8aa607a9ae7542d2a1b921731
SHA1

86e4c1dd56889d9d651a5b82c13f6ad954731ef7
SHA256

cd9a55f2ec7757d3a275e691053bb817c71ef9a8d71f07784399dd7183fe73b2
SHA512

efebe980bd7abedbd956ac97afa45151f931a9116ab33950eeb51b425cc601e05c20241f61f7d41193440eec5e42818b7c23fb90d832a8d3d3cb9619ae99b8e5
SSDEEP

24576:FN2g6JX7ImoznkSXntnPyQ0sVcMsJYZWRYAfyqYa2jciId37Wd:T2NX7bo9Xn56FicOZWRYAaqYMd3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff69fdf8aa607a9ae7542d2a1b921731_JaffaCakes118

Files

ff69fdf8aa607a9ae7542d2a1b921731_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 1021KB - Virtual size: 1020KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ