deccbaf9e17e1606a7213d4101226f3a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

deccbaf9e17e1606a7213d4101226f3a_JaffaCakes118
Size

118KB
MD5

deccbaf9e17e1606a7213d4101226f3a
SHA1

6afb9b30c9eca40323cece24464e7cf196dbe64b
SHA256

1ed5c8a79e1ea1315ca9aabc3890ef1e69b4f96049cfd687767d341ae8d4a994
SHA512

a1405cc90c7890857a319e80e5eda2b4d29eed9726aaa32cb480ae6ec0eedb725c7ff23f2101efbb8df5fc47c05bd621d278a733df4507abba9d7b35eed2d341
SSDEEP

1536:VbqJQDs4nVdngqQR9EBpmd/6S1xks8RIYQNKg9oNhsV996uSXxOd1suxW:IerV2j2BpmdCSP4RIH5MyYbXxOdeSW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
deccbaf9e17e1606a7213d4101226f3a_JaffaCakes118

Files

deccbaf9e17e1606a7213d4101226f3a_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 8KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ