de3781395637c13079218472ee871b50_JaffaCakes118 | Triage

Sharing

General

Target

de3781395637c13079218472ee871b50_JaffaCakes118
Size

242KB
MD5

de3781395637c13079218472ee871b50
SHA1

cd17a873483a2f910a155ee1df2ad4596b7f02cd
SHA256

4126b9c8f93fde4f35983227d6917031d6b93474a88f95bdb35ec40f345432c3
SHA512

8ad41e4a722904c35a84c51eab17ad8e5814c0749cda8a72d56bf5811445de0e78f6a27527f54558643dc0ec521cf3e9676be609130f151992c47633cfb5da1d
SSDEEP

6144:QjckxhGotqbSg9RsLvnQAFyhIOKFEjhLzNUTavglyrGtpk24:cxgJ79RCQRI7Edea2Yepa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de3781395637c13079218472ee871b50_JaffaCakes118

Files

de3781395637c13079218472ee871b50_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 312KB - Virtual size: 784KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 21KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE