1bd831b3e9b8824b97dd4b591b24a492_JaffaCakes118 | Triage

Sharing

General

Target

1bd831b3e9b8824b97dd4b591b24a492_JaffaCakes118
Size

1000KB
MD5

1bd831b3e9b8824b97dd4b591b24a492
SHA1

3ec7ccc1afdf3e1c3f461aead688055bb7a733d2
SHA256

28b7ddcc8adf11fb406198b688da89add30e58765c88b7a3b46faf50ab7ee2c5
SHA512

57506aa5b042b4ddc54e20b5953b863a50baa84c7a4504cd24f3b001c5f1d5bb8b6dfb826ca4fbaaf8d41903d6bdc98ba676c42659fc4f2e8cb336c9bd53fb21
SSDEEP

24576:6sSXVmefVMTqtjP7tg7Vx8JbvJxnsA9zyYpdvV44plDAI:6sKz8ezZumFzfrp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1bd831b3e9b8824b97dd4b591b24a492_JaffaCakes118

Files

1bd831b3e9b8824b97dd4b591b24a492_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 988KB - Virtual size: 984KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ