de610a8a3f5792b871af91ad45f0b0dc_JaffaCakes118 | Triage

Sharing

General

Target

de610a8a3f5792b871af91ad45f0b0dc_JaffaCakes118
Size

360KB
MD5

de610a8a3f5792b871af91ad45f0b0dc
SHA1

d324b2a5f713d0c4db8d34ad8dc7519ae0390209
SHA256

6bef5b255d4e93953338ed5d47831bb8dcfa585f614ffeac121493675a679c88
SHA512

d1d3191328bcf77add63cfb8773bf5f153bf7f7c727e203b0bbeb9087b10dd35f5fc96ae8be8275d92348df02b52001cbab025c0eebf06a23805f57b1ac85a10
SSDEEP

6144:iZIyxlYF2idZecnl20lHRxp3gPKizL3RdOHsnAsOuBilGXxfqbvUo:oxlIF3Z4mxxtizLPOMBOuB0e3o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de610a8a3f5792b871af91ad45f0b0dc_JaffaCakes118

Files

de610a8a3f5792b871af91ad45f0b0dc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 313KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE