5d543ec7dc016ed07039f97fae98d723_JaffaCakes118 | Triage

Sharing

General

Target

5d543ec7dc016ed07039f97fae98d723_JaffaCakes118
Size

459KB
MD5

5d543ec7dc016ed07039f97fae98d723
SHA1

32333a9457b20982a8ea385d8af9acf10ede321e
SHA256

612c55d50423f24426425d329e98cc87ec55c5631450f8338acfe8c7b6f69081
SHA512

7678a9e8390ca762eb61cbfa70ab9661ac950da3434f5497a90c41b4b81f733ad2f6a406797a50ac87b09b37538c0d9c8df1bf42777c3244cff8bf3af37cc5d5
SSDEEP

6144:SPNS/+PNS/ASEoViis3eho5HvAcYOADQyboSMsccL3K0:SPPPHy8iwAcUbba

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d543ec7dc016ed07039f97fae98d723_JaffaCakes118

Files

5d543ec7dc016ed07039f97fae98d723_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 456KB - Virtual size: 456KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ