5597f8bc7fbb3e86ddf5607ac9da8746_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5597f8bc7fbb3e86ddf5607ac9da8746_JaffaCakes118
Size

145KB
MD5

5597f8bc7fbb3e86ddf5607ac9da8746
SHA1

952158bf97751f91cb21c74d9ff93c15f22b2909
SHA256

e5be3a2c28466b991c8ce5ed58e8e4c47a627c640de3f068b009048a660e5d88
SHA512

60ef764909e7d9ef5525e83c3a6e0264a9da7769fc42b2c066b68458d6183ca200968afb12b2d68d5814452e2f5b52fd663fe5a606b2b8423f228ec872f2796a
SSDEEP

3072:yXxtrlcU1lCcrak0ed8JlqBBzn5aeQv/dF:yXDrlcBheKOBz5cl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5597f8bc7fbb3e86ddf5607ac9da8746_JaffaCakes118

Files

5597f8bc7fbb3e86ddf5607ac9da8746_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 129KB - Virtual size: 4.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ebut
Size: 10KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE