fe0997d338193e4363ed1b64badfc947_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe0997d338193e4363ed1b64badfc947_JaffaCakes118
Size

570KB
MD5

fe0997d338193e4363ed1b64badfc947
SHA1

d9ee0cfbd6524b122869151388029b3b8cc84d9c
SHA256

cd1b4a0c09c7cb2c0e9e486579e5c9669d91619cdf6f50660feac3f20864f0c3
SHA512

0c936fc9062be1df2a806a9b692b4124b660e8cdc715cb11ba94037390f5a646105338b909ed24748a61d98af2dfc67c5607cfc4d48449466f5f44723ebcc03c
SSDEEP

12288:ncK2LrC+QgWAiGmmx7fyUVfz8f4C9/t3N/Ul/Yhyjzv:cXG+WifyYfzhCH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe0997d338193e4363ed1b64badfc947_JaffaCakes118

Files

fe0997d338193e4363ed1b64badfc947_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 568KB - Virtual size: 567KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ