9f967ca8f7a95e938bf8865cf1874a8c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9f967ca8f7a95e938bf8865cf1874a8c_JaffaCakes118
Size

126KB
MD5

9f967ca8f7a95e938bf8865cf1874a8c
SHA1

e1a9394e8f2ac11d4a373f8513828a75e7965348
SHA256

e5b1c513a0a4dd11a87d7102342a4c3b45a951a27d9fdfb4f90f2a15a813d5df
SHA512

586a77f7bd6509d27287db2058d4fb918b2c144dcd8b36c83b20858c8a7a525f5ea1f3a80fd73a2b30a00e382f81eaa0bc00401c6657fc7781c45c334498080f
SSDEEP

1536:JeHVP+Dwvv/TyF8CbTYKRiiIAgsUxn+DHLc9wG9hajQ36eGQEdtLb1fATjZ93yb2:MHx+SvOF8CXYVEeG7tLYjb3ybPVA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9f967ca8f7a95e938bf8865cf1874a8c_JaffaCakes118

Files

9f967ca8f7a95e938bf8865cf1874a8c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ