fefe09053c9283531d0b271d632d54ef_JaffaCakes118 | Triage

Sharing

General

Target

fefe09053c9283531d0b271d632d54ef_JaffaCakes118
Size

939KB
MD5

fefe09053c9283531d0b271d632d54ef
SHA1

44449b8240bdd48d25417300af1ccc34db23e6b1
SHA256

ed14edeb1427a2305fb5a50144e265ce4c7ca266b5187bf8549c69b926c175b5
SHA512

34fd4f7b06877538caef337f4021be561ad7bbfa150a0b99aeed440d817174124da1cfe9a7e1ba576737322892210db5684f8650579352a72f5b9a03363e1b7f
SSDEEP

24576:5CekWjvxf0B2ONNaWLiwwmF8U2ukfMrU:wekWjpf03awwmF/2O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
fefe09053c9283531d0b271d632d54ef_JaffaCakes118

Files

fefe09053c9283531d0b271d632d54ef_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 828KB - Virtual size: 828KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ