fcaf232cdc63f87346c681546d4f0131_JaffaCakes118 | Triage

Sharing

General

Target

fcaf232cdc63f87346c681546d4f0131_JaffaCakes118
Size

298KB
MD5

fcaf232cdc63f87346c681546d4f0131
SHA1

bf93b0830ecda64b11e02f6c8b3500c56cb5b7ee
SHA256

ef80445719d27105d6831f83a56f15104915fd087e073d0b8142ef19b8a925f6
SHA512

d563975f6e075dabe4e71836f54cb98fefd98aa3f672e88c3d3dd3f8d511a0d0dc86347580b20a1a923589c424d60c9adca2c8fee07ca9e7ed13a31653fd5bb1
SSDEEP

96:k8h5PDJ0SEBAtF+b1XjVA0bRG6AG4jpYzNt:Ba30gxVA0b5Ah8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fcaf232cdc63f87346c681546d4f0131_JaffaCakes118

Files

fcaf232cdc63f87346c681546d4f0131_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 296KB - Virtual size: 295KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ