ffaf28eda588ac63ce28cb3cbd6b2607_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ffaf28eda588ac63ce28cb3cbd6b2607_JaffaCakes118
Size

180KB
MD5

ffaf28eda588ac63ce28cb3cbd6b2607
SHA1

c0b17aa95dc12956be70a0ecb8613b148f7e677c
SHA256

a232b9498f2a738895d700290c92ce0f8f34d5d60afcecd1f6094a3ea715c9c6
SHA512

368a56cb417b10beb8dbfe60600f6a804096040df2444ae2a2ecc0a6bf13a9dcdcae335938ad699cb7b9289c939b82851e72c94d55853054c852ea8213033e05
SSDEEP

3072:T5NHGjWQ2AzEibGNeNl9y1CVTDR4RHT89mZUZjrVTdvrl4VWRPtGmY:TQpbGQM1CVT94pTJZCd2VCo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ffaf28eda588ac63ce28cb3cbd6b2607_JaffaCakes118

Files

ffaf28eda588ac63ce28cb3cbd6b2607_JaffaCakes118
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 24KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 149KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE