06a4154d833e30ee910837bd73c73809_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06a4154d833e30ee910837bd73c73809_JaffaCakes118
Size

360KB
MD5

06a4154d833e30ee910837bd73c73809
SHA1

14a896ba3ba85fef312d38497fbf95935fae6c14
SHA256

b7a9f2da6df16348869cff5bdc2be414d3aa4efe38708962306f1575854256bd
SHA512

a1a88857e78cfb935e13d879f01c0cc925b95b4ae467df64f2264e1345edfc49fe0ddeff4dd49ddf150891901bd22b029ead7fd4aab92d0bb17b6b50f9a48c5e
SSDEEP

6144:kXQo0th67FcOx3Gu0/irRc0p5ipPzvpQ51Qcr9ESgMeZlXiFCl0XmFO2zahEQ1:kXQo0th6COR30eLAzB6ZCSybXuXmFO2E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06a4154d833e30ee910837bd73c73809_JaffaCakes118

Files

06a4154d833e30ee910837bd73c73809_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 357KB - Virtual size: 356KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ