0af79b672872b42682a8c67a3af99ac8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0af79b672872b42682a8c67a3af99ac8_JaffaCakes118
Size

319KB
MD5

0af79b672872b42682a8c67a3af99ac8
SHA1

5fa5daeb74da10fd33e9f106bd7ba4df286e53a4
SHA256

6f3b6ea3b50e6d3dde39791b563b8b4b2a6bee55db07fc74962f9ad27206de78
SHA512

64b35fa1a0f3d525f83075c986c5db816a69beb043b36430d1ed568007a1b235f67ac4ef4e2336443ff0da59bda67ff9e29213a68a76a42f2ea4241273b44236
SSDEEP

6144:ojF1htvdJhpyEmLnSKgn8oi8w0rNkAGlql76HpXsdTtk0PyFOgbD:SJhpyxmdGlq5XRPylD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0af79b672872b42682a8c67a3af99ac8_JaffaCakes118

Files

0af79b672872b42682a8c67a3af99ac8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 203KB - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Kain
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE