1338325c8068fb7d20738beb1f98be1c_JaffaCakes118 | Triage

Sharing

General

Target

1338325c8068fb7d20738beb1f98be1c_JaffaCakes118
Size

560KB
MD5

1338325c8068fb7d20738beb1f98be1c
SHA1

815381d5541f3fef1f46dd1d41c6d40657a63e6a
SHA256

c0b616dd9af778ee9c7d3f319ee708d4ee2c4b24878f3bfc6ed9efb50d6206f4
SHA512

8113974ac960ef23ee619ead416b781ff504bec02778510147323c98ff87e8a1270da63e5745b5f7b811cd6809307abb510d5b33f7707ab504353e152fce7d67
SSDEEP

12288:/AAcXygv6N1ZHMIifXYudUgVP1PEcDu+00MDPEnoWx6eTx6t5HVftGm4j0fCt:/AAqhkHMIqoANPEp+0hDZWxxcHV54QfC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1338325c8068fb7d20738beb1f98be1c_JaffaCakes118

Files

1338325c8068fb7d20738beb1f98be1c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

*LOCKED*
Size: - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

*LOCKED*
Size: 558KB - Virtual size: 564KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

*LOCKED*
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE