e938278e9887e3d79d8785f9d7d70aa5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e938278e9887e3d79d8785f9d7d70aa5_JaffaCakes118
Size

986KB
MD5

e938278e9887e3d79d8785f9d7d70aa5
SHA1

bc40d95eb31256c19d8631276660da57d2b702d8
SHA256

06b02ea307e5ac25930b2a738999041eeeee4d03d2a2c50e4850c182a5f7e623
SHA512

55f4ed37b9dbe78b03505fc31e326b7e383212c2f7f87f5331b317c5be6eada97ee4ac0c65f7bd052831371ab082bce89d549361e4b455c5145e34301ccdb861
SSDEEP

24576:ax56lRRZ+IhTdHekGa6NCqvbeuqPScZYcoJ6x7DCivk6qI4:Y56bhTdHekGabqvq9KNcLP8U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e938278e9887e3d79d8785f9d7d70aa5_JaffaCakes118

Files

e938278e9887e3d79d8785f9d7d70aa5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 984KB - Virtual size: 984KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ