5d7de4f8e4446e4a14deec911b737a4a_JaffaCakes118 | Triage

Sharing

General

Target

5d7de4f8e4446e4a14deec911b737a4a_JaffaCakes118
Size

713KB
MD5

5d7de4f8e4446e4a14deec911b737a4a
SHA1

f138fac0c2edb03306e42604ebe27271207d715d
SHA256

42f2a745d0302af4b253dc9a606a0b860252f081c80465e422ee4903d5f74979
SHA512

996b84cbe6d04507e4fd78cd336b55937760192c153d42db66f66241243c06ae90dc7cff28c2c9d9c066dfa4fd95441aae4fd4b7199a5ad0fdfb5aef6f08d04d
SSDEEP

12288://j17JA1mQEOU1k/BtwNfO1aVF3uTJiPNSkF3Z4mxxyoJwUp4YAMnf/USQ:njPA1mQ+kZtwNfmACJONhQmXyouU+3z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d7de4f8e4446e4a14deec911b737a4a_JaffaCakes118

Files

5d7de4f8e4446e4a14deec911b737a4a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

Size: - Virtual size: 400KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 397KB - Virtual size: 408KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 315KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE