ff7fe807ac28898eebfafdc2c636667e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff7fe807ac28898eebfafdc2c636667e_JaffaCakes118
Size

257KB
MD5

ff7fe807ac28898eebfafdc2c636667e
SHA1

fbeb1e803b7c0885ff0224f681e05296f7f38189
SHA256

358f1cb59204396aa2514250c10352c30414eee670db0809f57b5c004665fa33
SHA512

32449acec2b3a4a0d10bd059fb3c11f9f3fc28b2e661d889a5dc2d140531f2a15624b41d2dd11343680d7f89cb5aaf4c44d829b674d56ad064c6f363030b8bff
SSDEEP

6144:XeIJw9+4Fu6uppolXDmD9HjhwBCubyaMlH:Dw4fPD9VaMH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff7fe807ac28898eebfafdc2c636667e_JaffaCakes118

Files

ff7fe807ac28898eebfafdc2c636667e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 253KB - Virtual size: 253KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ