17492fa4cb1c970e1aa970f7cc9a27e2_JaffaCakes118 | Triage

Sharing

General

Target

17492fa4cb1c970e1aa970f7cc9a27e2_JaffaCakes118
Size

176KB
MD5

17492fa4cb1c970e1aa970f7cc9a27e2
SHA1

de0633742c6123458fdcb06882c47d519274cf88
SHA256

03f1e7b87b2428b8e2b0ff414fe65959ca9ccebc520de36a6605ebd27565fd2d
SHA512

9600d273cfe75d16df5b9974b8f4e8d7bba1bfb2114c452d33108ed1b9f5ceda4e3977685d5e795751880c35f759eb9cf03034a0b63bcb88663da8a0e629cf2b
SSDEEP

3072:/jYUnjtoUnnTjgVY8Xu18/CMuL6d0rcDoh4W9Y:rYUFn3t8XXqMeQDk99

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17492fa4cb1c970e1aa970f7cc9a27e2_JaffaCakes118

Files

17492fa4cb1c970e1aa970f7cc9a27e2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 164KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ