627954c5802114459a75e39255bfaee5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

627954c5802114459a75e39255bfaee5_JaffaCakes118
Size

280KB
MD5

627954c5802114459a75e39255bfaee5
SHA1

57257bc232eb907c76daac47f2093019c96e54ea
SHA256

6f76b112793896b8c28c52dc6f3947c8ba7660684ad889a45dea32a7ade6ec41
SHA512

1ace62f4b1094760be09d14948a18cebe418e77956b6ebf29ea8c89de7e436331d92f83f2c67a147843da87cf2f7e4ba47db98e504ca79ee07b4e9d7a64101cc
SSDEEP

6144:6TUOo2KRNn86qRb387H+ML3Ll7+QNGx8Nhph9Ug:eo2Kc6Ub387eQblSDx8NLh9U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
627954c5802114459a75e39255bfaee5_JaffaCakes118

Files

627954c5802114459a75e39255bfaee5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 204KB - Virtual size: 202KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ