30a49dbfde17ededbf974fb681563f37_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

30a49dbfde17ededbf974fb681563f37_JaffaCakes118
Size

690KB
MD5

30a49dbfde17ededbf974fb681563f37
SHA1

a6333f82bee43c8c056ca328a441647220a606ec
SHA256

c670c28b1b717afc4b0e19971dce04aef5a93491a1e681e6bc2aa5504fc44984
SHA512

11ba39fc50d8b01d0a880bc63aa977cf5c201d3ec87dbe165b27edb2c832ece4069ababe37c11c908b05bd08ef392a4481592a09e4e87b98190118794acd18bb
SSDEEP

12288:8V6/AZG3oSO0UEN5Q/1oIgANavO3omJ5b7of6F:8V6/AZG3oSO0UENG9P9Nam4mJ5Ifi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30a49dbfde17ededbf974fb681563f37_JaffaCakes118

Files

30a49dbfde17ededbf974fb681563f37_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 672KB - Virtual size: 672KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ