0226533dc9168d1bf02ce098cdc39313_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0226533dc9168d1bf02ce098cdc39313_JaffaCakes118
Size

1.5MB
MD5

0226533dc9168d1bf02ce098cdc39313
SHA1

ae0bc6b59562ceff6eb56b297a9b3e267a3efd3a
SHA256

c58b6204422b4a7a303536b81fd2a97ce2e966d66c626787e9cc9203bae5bfd9
SHA512

a93369408faff1ade0aa43b60e242cf1aa24ab0a127975078fc4203118b22dfdcb1ccc48818b0a57f44ac8424083a64ebde274c138a87411f10809c2922ad226
SSDEEP

3072:71+j8ZSPp7a5r7QCe2eVxAuaeLj4aM1H:70j8Qwr782e9dA1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0226533dc9168d1bf02ce098cdc39313_JaffaCakes118

Files

0226533dc9168d1bf02ce098cdc39313_JaffaCakes118
.exe windows:4 windows x86 arch:x86

91323fbf2b892052c0f5f22da49d9680

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FatalExit
FatalExit
FatalExit
FatalExit

Sections

T.69
Size: - Virtual size: 140KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

T.69
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

T.69
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WINDOWS
Size: - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_!_!_!_
Size: 93KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE