dbed4a3c03182fd966d1fe4732752b5b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dbed4a3c03182fd966d1fe4732752b5b_JaffaCakes118
Size

693KB
MD5

dbed4a3c03182fd966d1fe4732752b5b
SHA1

facd1ebd48cdb89a75b1794a28626dc219850e16
SHA256

ec28e50b5d4cf294bb316ff3c8e3133a400459ee72b895af4bf358b811374a82
SHA512

d6023770fb4f42fe57180fe2cede08da05597d810d6b229c1196185f72750ce369a6c03fd27c717a691f1369c16e01153263d01517a62084694a595c18781ec4
SSDEEP

12288:CCfPmus4RwKQe+epLwVeq5/exUVYtQ5e0HEc0VJlY4at3TfNXacnkrBhhglMgT:xf7RwKP3Eeqtex4sQ5QceTTs3ocnUBgf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dbed4a3c03182fd966d1fe4732752b5b_JaffaCakes118

Files

dbed4a3c03182fd966d1fe4732752b5b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 613KB - Virtual size: 612KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 63KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ