0844d162734183b0f38cd447c9878853_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0844d162734183b0f38cd447c9878853_JaffaCakes118
Size

10.1MB
MD5

0844d162734183b0f38cd447c9878853
SHA1

acabfb7c7515c6b448d059737d75070f1948d0aa
SHA256

7ab1bc329c65005c9b0548af2da6de428cd57b18bde8c30863cad7646903c6cc
SHA512

682c1c781aa9b428963d89105cd7abb466066049598131d55ab6a862bed3f1534ccf04f7f2d6aaf3bc77aaf4bb1aeabb1ed1ef677a61723c069ad1be0605dc1c
SSDEEP

98304:XJ/aTT6kJ/WoIH4jkGV+p2++Qs/cackHr2vE+4N9zjy530eLeEEGCz5Yl:ZCh+okGzvjreE+4N9X/eLeEEGCz5Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0844d162734183b0f38cd447c9878853_JaffaCakes118

Files

0844d162734183b0f38cd447c9878853_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 9.9MB - Virtual size: 9.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 240KB - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ