f5af41ba603ed0fbe694ff8c037a41d6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5af41ba603ed0fbe694ff8c037a41d6_JaffaCakes118
Size

904KB
MD5

f5af41ba603ed0fbe694ff8c037a41d6
SHA1

dc7d73ac7bb69508f4d37577f70167d395c1e6b6
SHA256

7fe40c27716093214490dae337371214c211f624200a6bf5601fbc691a8cd595
SHA512

6ffcbf173d92e0ca9daf8d5c2beb0cc9cce149959c4607c774194babe84ff622e4ff2d451fc5babfea88200f39540ac02bd7811c90ddd79af6c69194d86daf67
SSDEEP

24576:CWK+Pp9AR95yE/Hq4/iA7tygEkmzXqGYkL1i/2ZhrbZg:7PpKRyE/Hp6AhJEFz6g0/2ZVbZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5af41ba603ed0fbe694ff8c037a41d6_JaffaCakes118

Files

f5af41ba603ed0fbe694ff8c037a41d6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 899KB - Virtual size: 898KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ