1b5eed4343a1ea5eac4e7aa53c0dcdee_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b5eed4343a1ea5eac4e7aa53c0dcdee_JaffaCakes118
Size

230KB
MD5

1b5eed4343a1ea5eac4e7aa53c0dcdee
SHA1

3ba5deb05b7780fc2a378d4ae56659cbf2c78c81
SHA256

de0f28237af05a3f215c1c55c00bcaf5540f3d3b614bbe08e48b81bfc4a6f37e
SHA512

699b6f0be2bec66b2ba1df01351d17c5eaad2df82287475aded1c33877715bf1b45e2270c21961169dcedcc18119ed17f84a85cd210265ef118b62e005d3e4e0
SSDEEP

6144:DhToV3QRhxEI6gjKPF/Ot2s5GqKyfa4awQgfDq9Z:Di6Rh+I614ARqKWa4E6O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b5eed4343a1ea5eac4e7aa53c0dcdee_JaffaCakes118

Files

1b5eed4343a1ea5eac4e7aa53c0dcdee_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdata
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsdata
Size: 91KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

gqedzrh
Size: - Virtual size: 8KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE