General
-
Target
76acf20d396b2fd72e0ea856793a79bb_JaffaCakes118
-
Size
175KB
-
MD5
76acf20d396b2fd72e0ea856793a79bb
-
SHA1
5268212cdc4615c540c0bfe3d16229bbc70178e0
-
SHA256
21e9629700b614fcc2c603ee16cc39aa003eae248819b53a1df67765ae4f5019
-
SHA512
6a13dcee99e404de3f742694f4e625a4e8786ae195ed46f00d706ef29265b3c64855462100e88957ac797b75f670671cf4ce5fb5959b943c1657b7b80f909a1c
-
SSDEEP
3072:ZDOpjny/xfTeriw5hYka70W31Ia/PfO2SIq3:CrypirR03J3G2TO
Score
7/10
Malware Config
Signatures
-
resource yara_rule sample vmprotect -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 76acf20d396b2fd72e0ea856793a79bb_JaffaCakes118
Files
-
76acf20d396b2fd72e0ea856793a79bb_JaffaCakes118.sys windows:5 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 64B - Virtual size: 5B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ