fdfa570dcd18678e430f430f48d4bc85_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fdfa570dcd18678e430f430f48d4bc85_JaffaCakes118
Size

432KB
MD5

fdfa570dcd18678e430f430f48d4bc85
SHA1

f74d8b9589039092db117d3c1637bb7996b21657
SHA256

dd15057ef27f8c65fcebb1bd539fd63472c53b9776c3ebc1943b888ed102d079
SHA512

44cd9885fe93fa9d838535027941aeaeda7e699eca62d0528e1eaa95944b623c26900918d17da93995acc886fec2bd2fd0802eb77bd65e46d1975b75e9bcfe4a
SSDEEP

12288:o7/5MP+CP1b3PNjEUnSY4rAhtlNotwHk4TL:690b/aaBHk4f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fdfa570dcd18678e430f430f48d4bc85_JaffaCakes118

Files

fdfa570dcd18678e430f430f48d4bc85_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 420KB - Virtual size: 418KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ