de5389177296c144487d0307544eabdf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de5389177296c144487d0307544eabdf_JaffaCakes118
Size

928KB
MD5

de5389177296c144487d0307544eabdf
SHA1

c38e5f1b24ecd33a6d14456567c8430071a318d5
SHA256

96b9430fb9f4b94622d041c3086ffecd7758757b66363cdd5ae4891dae628caf
SHA512

f31bd3b912586ce57a437514e9b5183e8d99ff1b17350f299d3362bfb597546c7e6cca6e041b4fe7bb9e1bfce526429d25f517b48edd10153e1f7c146c8c653e
SSDEEP

12288:d7dmnKJXatixs1M6WQAaelqByUGS66Q61TEhn7fgBaTQJ+BQtddX:d7dfTe1vWQAaelXK71AwaT6+BEdd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de5389177296c144487d0307544eabdf_JaffaCakes118

Files

de5389177296c144487d0307544eabdf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 804KB - Virtual size: 803KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ