f813ac0c962af60261ea4069f82ed86e_JaffaCakes118 | Triage

Sharing

General

Target

f813ac0c962af60261ea4069f82ed86e_JaffaCakes118
Size

40KB
MD5

f813ac0c962af60261ea4069f82ed86e
SHA1

0469679d8401288c0b0790effba2224d6f275ecb
SHA256

74e90618663fbf015c7becbce665f700316d609daf6aad1b0c6fd37b0dd210ff
SHA512

aff96dd0edb37b65264af195f31df265efd2e28a8d2c5513dbb4b8efc586f3602d22d3acaecd1226e406d26d8caa32c00acf970c438a88b43eff8b68e0322b2d
SSDEEP

384:RMM789GqF+eWlOA+JUA8aAmGQNMC4/LTB9r0eT0pqfAmoC:DA4k+eWPaAmGQKhoC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f813ac0c962af60261ea4069f82ed86e_JaffaCakes118

Files

f813ac0c962af60261ea4069f82ed86e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ