011b129bfcf2dd0cc4b584b521778521_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

011b129bfcf2dd0cc4b584b521778521_JaffaCakes118
Size

58KB
MD5

011b129bfcf2dd0cc4b584b521778521
SHA1

b604c95b49ec79baea132d3edab2bf77b9e280e4
SHA256

de931877382f2b37eaa2c6232cca782910d87bab91018879697205bee0a3f4a3
SHA512

2d9b69e5724703e6858686164fb197d1e96590099b2d48afc056b8d2778bb7878367ac44670ae7cb783f1ca72ee341f56fd9c101413a90571649591877d3d7ce
SSDEEP

1536:i1C+je1d2I2x///3/YWaPJKU+yaRqi+nVjehO4q77:eC+je1d2IU///3/zYZnsrq77

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
011b129bfcf2dd0cc4b584b521778521_JaffaCakes118

Files

011b129bfcf2dd0cc4b584b521778521_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

1a83.tmp
Size: 50KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Y54654GF
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DSFSDF46
Size: - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

HEHEWOAI
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BVCBGH6H
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

COMTUME
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 560B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SHENLAN
Size: 17B - Virtual size: 17B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

YESMYLO
Size: 67B - Virtual size: 67B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ