62f94e51bf8c8b42eef7db665653d6be_JaffaCakes118 | Triage

Sharing

General

Target

62f94e51bf8c8b42eef7db665653d6be_JaffaCakes118
Size

1023KB
MD5

62f94e51bf8c8b42eef7db665653d6be
SHA1

137bb232faa2cc704359a815b2496d7e58243ef8
SHA256

924e5e12d15c989eec28e84f076823efb42c15e723e97d4c65e43e0aa61a8931
SHA512

9350b24f540b955756111a73d39dfbe63a1b1962af568ecacd37ede5c9958e78db5adc7e76db624886f37a23985c5b289d97ff73551dc6fb6f39ed2da550eb52
SSDEEP

24576:x2GDrGyODSCRCYout2WgcY4GVk5SSIKdwfr:3arDS8Xout2Wgc42sSIKdU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
62f94e51bf8c8b42eef7db665653d6be_JaffaCakes118

Files

62f94e51bf8c8b42eef7db665653d6be_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 658KB - Virtual size: 658KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 363KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ