f80f7ed35fde008a4b9ccb8d15083259_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f80f7ed35fde008a4b9ccb8d15083259_JaffaCakes118
Size

76KB
MD5

f80f7ed35fde008a4b9ccb8d15083259
SHA1

2ccadfa609ea833e1aa4f1de7551f288b73e3b6f
SHA256

67e5af8495a8f81c3fc94c811fa5998cdd551f760482a9f2594e5189451a0cef
SHA512

fb61578aec36287a3d8778d61c2104797e41c460a1616fdb7d8289da1ba2cd40c486e51209bab6c4b90b7279bb8313b72e6bf7085737970bf2d3a89bfd6b5ef5
SSDEEP

1536:ziPirF94WqPR+UhI5raheepQHOFpPvhdZ8p3MY:ePir7U86dDFpXbZwx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f80f7ed35fde008a4b9ccb8d15083259_JaffaCakes118

Files

f80f7ed35fde008a4b9ccb8d15083259_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ