fbd18e4a9b85e4bc90ef1c75f9ccfa92_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fbd18e4a9b85e4bc90ef1c75f9ccfa92_JaffaCakes118
Size

8KB
MD5

fbd18e4a9b85e4bc90ef1c75f9ccfa92
SHA1

3bb6931e41c8df6e69e57f3b970add9346cd9246
SHA256

403c0860463b910254d50e3cc5f027d281276aeabe54d2abd18e0caec8f01f1e
SHA512

f2beac85d29647dc4d5d117189a56716e3cd9f8270db638be85deecaad1a7c54701c1c2abc758702acfee49019bb9bb5f8ce8803df7df9dd243c3735db65a11c
SSDEEP

192:2UL+LZkpTlrCVEnlYJL/zLTx7PVEu2qpDM:2UL+LZw1CPDzLTrpl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbd18e4a9b85e4bc90ef1c75f9ccfa92_JaffaCakes118

Files

fbd18e4a9b85e4bc90ef1c75f9ccfa92_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ