ff114cfdc768b9c8d98ed619a11a2163_JaffaCakes118 | Triage

Sharing

General

Target

ff114cfdc768b9c8d98ed619a11a2163_JaffaCakes118
Size

296KB
MD5

ff114cfdc768b9c8d98ed619a11a2163
SHA1

33aee49f8b88312a852fe5f0b05b1104b5cd5852
SHA256

b9290d418cffdd8f2a05a83e8e47bd6b01820bf92be0bdce53ab2ef5edf1c0bc
SHA512

3651a769d36177cfe4090b38e4a3731087e392585a1866e138aa83dac6e17eb66d0ccaf73adb048b7cd3fd4504c490612da4d42852a8f8745f5b93375515527d
SSDEEP

6144:RIX93V+4AofX5vA9dkIALdUQilEhXtHQU9y6AwTRl9pBhejUYoeZ9n:2VhA65kkIABUQilGXtHQay6vVDpLejU0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff114cfdc768b9c8d98ed619a11a2163_JaffaCakes118

Files

ff114cfdc768b9c8d98ed619a11a2163_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 214KB - Virtual size: 441KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 29KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 34KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.agvgrmw
Size: 8B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.teraphy
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE