fd6d18745f4d5363712d8860a859c3a4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fd6d18745f4d5363712d8860a859c3a4_JaffaCakes118
Size

721KB
MD5

fd6d18745f4d5363712d8860a859c3a4
SHA1

4f6497c917fe6b6e76e13dbbc432eef3acc6d694
SHA256

9a322cb9942ae38fef3be586d3a9f118abb4ac4f44baf00576a5c20d68c752e8
SHA512

3c1b233ce4bc1a564840d3e4e5e91f09a9a7aff0665b94e96570b9cbee818dd3dc4785719d4c238bc348d90aa234ab2007e9b7faf484783d794ef123ec858432
SSDEEP

12288:kBSdLFavyHBWrasVp033/NDl2Yj3gpTtWFqKd94JjVo:OSdThUg3VDoYYtWwYU+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd6d18745f4d5363712d8860a859c3a4_JaffaCakes118

Files

fd6d18745f4d5363712d8860a859c3a4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

@Y@089T
Size: - Virtual size: 587KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

6LYX$!5&
Size: - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

p 6'(('#
Size: - Virtual size: 7KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

iQ%/jHO'
Size: - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4meTHLQ)
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Op=J=1*#
Size: - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rErSCl1W
Size: - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

&sB/X,Je
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

!0COkWi1
Size: 720KB - Virtual size: 720KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mini9
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE