ea8a7f54386e5e65a0cdc89f1d9d7a6b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ea8a7f54386e5e65a0cdc89f1d9d7a6b_JaffaCakes118
Size

1.6MB
MD5

ea8a7f54386e5e65a0cdc89f1d9d7a6b
SHA1

948fc7a2491bfa5c5f0a59e3d03ba71aa36dc9fc
SHA256

bd5aa63c7b831cd6b429e1a8bec426f7b3d59ee9fd4049bee2dfe2ecf08dd8d9
SHA512

dcd4059cc387b14be880a12c007fc7392695c855d211760802c07034386c99a37497fe4b06c8275dc20f1a329b72073c198fc175117a83756d53e3c2af5b45f7
SSDEEP

24576:5xbo2TQJU4zmqvZ3RiUi+QLQlcXkky1t1xb6fb4iVq374fyGzQ:3bobfacfMLA8JVU70JzQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ea8a7f54386e5e65a0cdc89f1d9d7a6b_JaffaCakes118

Files

ea8a7f54386e5e65a0cdc89f1d9d7a6b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

Lg68F
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.dark
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ