ff0eab5e138f9baa75e34f6d5f07cf12_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff0eab5e138f9baa75e34f6d5f07cf12_JaffaCakes118
Size

5.0MB
MD5

ff0eab5e138f9baa75e34f6d5f07cf12
SHA1

adfcc45ca62d342520933b2d938c44209da54a11
SHA256

130dd9bb7ef84f401301134d4707752857e64323c4171f7ec239528941b6babd
SHA512

d302ef40a37591111a29afa9bb7c3c90cc3f6143243d6f11a2189907e36fe3007818e2306a3362197b0e1ead168996b8319d57d240c873ca12c50620b1a70488
SSDEEP

49152:lD0eQx51yApewxAqAyE71jRDYQNQ2MdP6OZs/N/DI+vPZzwmb29zjNEOFQZquAbu:lYeQUApV61j5FvMdL0Np61NSE/i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff0eab5e138f9baa75e34f6d5f07cf12_JaffaCakes118

Files

ff0eab5e138f9baa75e34f6d5f07cf12_JaffaCakes118
.exe windows:6 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 228KB - Virtual size: 322KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.symtab
Size: 512B - Virtual size: 4B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ