ff494257fb870705002756da5c8479a2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff494257fb870705002756da5c8479a2_JaffaCakes118
Size

203KB
MD5

ff494257fb870705002756da5c8479a2
SHA1

057278487cfd05daf45691ad0641fa101d8a8a1f
SHA256

e6880622ee4c7378822dbcc54d38b9e81d03d594223ba54a2d170aa7f4a27a9d
SHA512

103f07340c297a056099be6c9c6b600edf1abb9084f89f5a2de5a875f85fc79c370dfdaf3907cc09bf798dc5e8b54296417286c18a5b3c42c61b0e7fe05ab3b3
SSDEEP

3072:pMhKbq00qawM7pjz+QSKrETGrWI6IS+vfpQTp49XQ86SQJq8b4PTH94YL8cCSZTm:uhKmt1/EIi+5QVD86PJqw4PbezSZTrPK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff494257fb870705002756da5c8479a2_JaffaCakes118

Files

ff494257fb870705002756da5c8479a2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 19KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 12B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ