de7672dce2dd129e98680ae3cfeb0a87_JaffaCakes118 | Triage

Sharing

General

Target

de7672dce2dd129e98680ae3cfeb0a87_JaffaCakes118
Size

778KB
MD5

de7672dce2dd129e98680ae3cfeb0a87
SHA1

13e2a6c5510993cccb09ae6ff73254daf1e550b7
SHA256

6d403ff9969edacd421427c47e8d51249854afda9e78f71415dcebb0336690af
SHA512

c98201994423aaa2701f24be243189dd87b5d148d0f30464d7e7deeeb3a20a950bc2c991babbbda9d18d0fbd7ebc1b12a5d78cc6a1b80a33f2b910558b3c1d7c
SSDEEP

12288:Zed8J1TrRTpWskABYEd5Bigb72lXTkXoCqw/0Fzd0Z9q59CZ8IKC7STUZ/7XfG+n:ZiA1b5BYG6gWlgV/0Fzd0Zc51ySTifGO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de7672dce2dd129e98680ae3cfeb0a87_JaffaCakes118

Files

de7672dce2dd129e98680ae3cfeb0a87_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.CODE
Size: 5KB - Virtual size: 312KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.DATA
Size: 763KB - Virtual size: 764KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ