def8d768d731087d7dc5f58983acb0a6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

def8d768d731087d7dc5f58983acb0a6_JaffaCakes118
Size

214KB
MD5

def8d768d731087d7dc5f58983acb0a6
SHA1

eec86f624fa863a04df1f511f10da1b6e5a0deb8
SHA256

2b427d3b78a8c08b8fcec08e8cb398293588a2ccb6cb08818f832ae8b19e4a29
SHA512

8c6d6676511aabe1bc4740f753604ebab39d246c025dfcef1eb0eedd8e916112751b0197280ecef15d848a6049b6673c385ca7805b8a02b9f827fc70e2ac360d
SSDEEP

6144:wfPoVlpRQ+gUg6NBDqcj4FLRnchSQRkJ7KIJvEMXvcxBo3k:uP6lpRQ+GoBjj4Pn0RkJ7+M+k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
def8d768d731087d7dc5f58983acb0a6_JaffaCakes118

Files

def8d768d731087d7dc5f58983acb0a6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 97KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 21KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 11KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE