b3bf97bd39e9b5c715ce271e483f2232_JaffaCakes118 | Triage

Sharing

General

Target

b3bf97bd39e9b5c715ce271e483f2232_JaffaCakes118
Size

1.4MB
MD5

b3bf97bd39e9b5c715ce271e483f2232
SHA1

47444dd56b70283a488627e04eb8340e51185914
SHA256

db2c530b078b07451b269822a737faa9d088680a7426bf6e5e5d7ba364307342
SHA512

d72d01d1f066307bbfd0f1557a0dd0389cda569b8ba69d1d9112436735434a953ac43b87489c6924b253276e74f39ad2090a69e00200b0606c1b7867e2bd9f49
SSDEEP

24576:nXdgseMnCyH34RqAdqPMySWB6MjuoSaeL:ntgu4oVPNFBRy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/IMG4218000453285903412004.scr

Files

b3bf97bd39e9b5c715ce271e483f2232_JaffaCakes118
.iso
out.iso
.iso
IMG4218000453285903412004.scr
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 930KB - Virtual size: 929KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ