a0326f0471875c1ca3905693ebc45e9c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a0326f0471875c1ca3905693ebc45e9c_JaffaCakes118
Size

3.4MB
MD5

a0326f0471875c1ca3905693ebc45e9c
SHA1

b84165358b7d8d5096833fec8abf6518e6a1c366
SHA256

1f7b73f11bfae8474aa195ba8dd0f92ccf613868aeb2070d684e44ceb51ab51b
SHA512

93d13265c0684d991b38748529e77512993a702cb36da2ecdd016fa140f4e9514644c532e9a24a3438f0e0bb775608daca1d2a1d3e259b1e5455765f14eb3dee
SSDEEP

98304:kALY1mZhEYYDwrJDgk4UsC3jlMqyzvBwXs:kA4mZmYGwBjlMWc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a0326f0471875c1ca3905693ebc45e9c_JaffaCakes118

Files

a0326f0471875c1ca3905693ebc45e9c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ