13e155bd74f3b310aad11b4468e086f8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13e155bd74f3b310aad11b4468e086f8_JaffaCakes118
Size

197KB
MD5

13e155bd74f3b310aad11b4468e086f8
SHA1

a4a6d1aefa3a315bd19ba4331492003740a39b88
SHA256

c920105426f6890303400ef034f73d774d65d81045ff8e249e7fad1f9070a7da
SHA512

0e11c4bbacade654cff77e03cbe5a8ef99a8d665572c6340282e8e693026458ee561d9ed89ef29f63f79b829f72559f1bfe355e64f683db59bccd45625950e65
SSDEEP

6144:rybNF/rCYpyUd7YhfCkOxo9BQsNxfGx6+G:rybNF/rNy67YhfLOxo90x6+G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13e155bd74f3b310aad11b4468e086f8_JaffaCakes118

Files

13e155bd74f3b310aad11b4468e086f8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.ksfytpn
Size: 124KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.jpftkkx
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.efsmzii
Size: 20KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uksfxjj
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uyzsfca
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE