1213e96ef59da796226e1bfbdab50131_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1213e96ef59da796226e1bfbdab50131_JaffaCakes118
Size

2.5MB
MD5

1213e96ef59da796226e1bfbdab50131
SHA1

67c8d18964e2bebd93cc4ba76740b9ec0308a633
SHA256

73329e3f83c16d89d4a148fd55879ab3b6e29a565ded704212d8664eeefcd391
SHA512

5d5977ee4ea050544f7bf34207c816ecde9459f4dfc0c2ac5bbf1fe80c2a9703a2c0e82269790cf61e0c19fca0fb6415f628302f65783e2ff6b22e99c4481889
SSDEEP

49152:5ULjAh0FuM/liHkFBqh7Gt+LYV9CK5dNNMKYVqai:yj5FuM/EHkbquYyRcq7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1213e96ef59da796226e1bfbdab50131_JaffaCakes118

Files

1213e96ef59da796226e1bfbdab50131_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ