158f6d23703e5052c808b162adb7df4b_JaffaCakes118 | Triage

Sharing

General

Target

158f6d23703e5052c808b162adb7df4b_JaffaCakes118
Size

784KB
MD5

158f6d23703e5052c808b162adb7df4b
SHA1

16789f0fceaf1d8e36d2b4d310b819ccfa5bc52f
SHA256

87a7a6196c52b88f490000ba9e4c65496f73738d1e31c1e5c87038ec4e958c83
SHA512

2d758c5bb38f52837a284f7f75e0c9a5479eb627502fdc3fda7bfdf555e889253697a2251375ef91400a99b295ed3cb4511b2feee00d015e39c8e9e8e8d0e07c
SSDEEP

12288:P+Yu4qDKQHY9o5OmG1Zhw0JcRgvKOIyG:PvqDHHYkOl+RRIKdv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
158f6d23703e5052c808b162adb7df4b_JaffaCakes118

Files

158f6d23703e5052c808b162adb7df4b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

0s0
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 676KB - Virtual size: 676KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ