8b590e4fff4a359ce64fb06c26ecce3b_JaffaCakes118 | Triage

Sharing

General

Target

8b590e4fff4a359ce64fb06c26ecce3b_JaffaCakes118
Size

908KB
MD5

8b590e4fff4a359ce64fb06c26ecce3b
SHA1

ae5ffc2c2544dd9a1012052f5f58a080886654f3
SHA256

1ff7e9d153991071f612347c0f75ecc3b9aa2dd76038423e7195e175d8cc7d66
SHA512

9dfed737e6989e499aa8f43a981507d056afd00456fd886dbf485ce244218c4047fd3ca25b52f5d266e7fb870092826bc22d38cb8b46fdaec6f28b6fac8ad556
SSDEEP

24576:DPsI6ZUkHu65h1OJSy71+HPBD1Lby3T7h:paFO65h1ODELby3T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
8b590e4fff4a359ce64fb06c26ecce3b_JaffaCakes118

Files

8b590e4fff4a359ce64fb06c26ecce3b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 905KB - Virtual size: 904KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ