0b2c2642bfb080351b586b281ab767f6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b2c2642bfb080351b586b281ab767f6_JaffaCakes118
Size

44KB
MD5

0b2c2642bfb080351b586b281ab767f6
SHA1

738ccb3812087c9ce86bb457650ed438152d74fc
SHA256

ed537d0537f5bf7adbe58b19d29c7fa73554521bb61986f9e22715ba71298c23
SHA512

977aedd72e8de024d83c351b8a31c0d045088e1d715cc29e5943f02f59ed310e87beaf6daa53f9a248df4b7baf8dce00838a9f06852c6eb2b5a6f7e36d57f829
SSDEEP

768:RUCoGoYT+GrE+0Nv+B8KuEp6i9pYce8AmrFFW:RUCoXhGybhM6i9pz9RFI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b2c2642bfb080351b586b281ab767f6_JaffaCakes118

Files

0b2c2642bfb080351b586b281ab767f6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ