f2dff7cc541f605b3dd14878d9b3e625_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f2dff7cc541f605b3dd14878d9b3e625_JaffaCakes118
Size

381KB
MD5

f2dff7cc541f605b3dd14878d9b3e625
SHA1

5e9b97b63d29997873a16cdb792e0ccac4843233
SHA256

f89caeacd073ea27963ad88bbe6f2928560a30c7326bc67fae196ee8c0c3ff0d
SHA512

b67b02c12eb40eb742f15b4a6f04a51b5337b9fe66a68ca8016eb4e1d7b8722671a9ba1a70ded9714541f4445bc0c7a787ae4c3690fe686a846aa25dab97d278
SSDEEP

6144:0tRDqnlmDW/ny+lKuxsW8eFL1EXTo1wi/AWu9A/hID+t7M3:mGFlKuxKDlSlo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f2dff7cc541f605b3dd14878d9b3e625_JaffaCakes118

Files

f2dff7cc541f605b3dd14878d9b3e625_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 371KB - Virtual size: 371KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ