fe2fb9647e8792b2e8941fda4b9e8755_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe2fb9647e8792b2e8941fda4b9e8755_JaffaCakes118
Size

250KB
MD5

fe2fb9647e8792b2e8941fda4b9e8755
SHA1

f52fc20ef5517fa30cd8ea478efe14612224fee4
SHA256

50eef6fb7c70288976f4e81a1cd8e71b66e2d941c8a6bbac426f4f30a5590b5c
SHA512

997287fe4e0c1c393e9838cfd3c536d36167a23d4d695c93b70218f60405ea0b639db58f69b38d1a8556946bf66558fa9de8225e38a8d103f9f96e5f1c0868d6
SSDEEP

3072:zVYq7OOuoFu1HBweLlC0MYurvVY0ogBQYGIZ2SKv0ZoPiOeqCn/lCS7bzaC34a3u:fiODw1HZLlC0MYSQIMDTPiZI8mC34/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe2fb9647e8792b2e8941fda4b9e8755_JaffaCakes118

Files

fe2fb9647e8792b2e8941fda4b9e8755_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 695KB - Virtual size: 694KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ