9c2d04c91ee5b84f33c3f4e32502bf39_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9c2d04c91ee5b84f33c3f4e32502bf39_JaffaCakes118
Size

1.2MB
MD5

9c2d04c91ee5b84f33c3f4e32502bf39
SHA1

5b9351628eb9d1ec0db0e42e165f517c4d706320
SHA256

84df1be3d3287ebcae1a668ac0594a48f27591806703ff9fe3124e77a05b07ed
SHA512

2f2ed0030d5e36ea5415025424d7eafd9e130c59e9ef6ee08d066120020f3dba66aa895540d7c697958d095b936ebfd4d8ddc6371f2893733a5f4702f147b1d7
SSDEEP

24576:+sXwBve0P7HpV23Ppt7lnYKQ+Uu7qk4Y3zYXNTV4tVXTImJKi21mtQpzrG8JSDX:+3W0jDGPpt788qkNgTV4tJIm+M4zdo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9c2d04c91ee5b84f33c3f4e32502bf39_JaffaCakes118

Files

9c2d04c91ee5b84f33c3f4e32502bf39_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

N:M9y5
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ