eb12bf64d3ba420ce5970ac128e318ce_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eb12bf64d3ba420ce5970ac128e318ce_JaffaCakes118
Size

512KB
MD5

eb12bf64d3ba420ce5970ac128e318ce
SHA1

8bd3c58568e0df5b2d377c9b5835a32f2c8d89be
SHA256

dec2a7844a86f995c1f2fe4dec4317252814bd969bcf63e9f8f1b58a34901363
SHA512

28a464679905f96a714fc950c55efe2cef39f0de6f3edfc237de777756b1bad9d9f38ce6bedcb3155829bf11353114d43deb46c39dbd38aa5fadb6182f644e88
SSDEEP

6144:E+bfhQMHvaOuUKc7tl9Dt0GdsbIlcMEd1MjXIpb+9kSHVc7g/4r3:VbJQOvbm4lRybIGk48eSYS4r3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb12bf64d3ba420ce5970ac128e318ce_JaffaCakes118

Files

eb12bf64d3ba420ce5970ac128e318ce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.wibu
Size: 504KB - Virtual size: 504KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ