eternity | fdb770a6834e45dcdf3dec3d75fcb010_JaffaCakes118[.]exe | Triage

Sharing

General

Target

fdb770a6834e45dcdf3dec3d75fcb010_JaffaCakes118.exe
Size

85KB
MD5

fdb770a6834e45dcdf3dec3d75fcb010
SHA1

44e017fc0b947ccae09eab062ab1db21863a8d7a
SHA256

74be0d76b6d5bb13fd23b45da5410903f38fb4810db8446fc60d5ad7f66a8956
SHA512

ba6ae780f6c7a8fdc7a08b4d6319f409a80bb85cea81c78a5ebb73649979943e76abad3d840c1594a42747070bf98eceb7012487a00f9198588846b4af6263ab
SSDEEP

768:pNztCnTDleI2ySsXm8XVMdOcdRHCB74gEpM86j3ArR5s1s9naW+9SLf:p9tCXUj8X2dRiqKwdy1s9a3SLf

Score

10^/10

eternity

Malware Config

Signatures

Eternity family
eternity

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fdb770a6834e45dcdf3dec3d75fcb010_JaffaCakes118.exe

Files

fdb770a6834e45dcdf3dec3d75fcb010_JaffaCakes118.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ