1c876bdafc89177a0142e1d30ffd4861_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1c876bdafc89177a0142e1d30ffd4861_JaffaCakes118
Size

868KB
MD5

1c876bdafc89177a0142e1d30ffd4861
SHA1

6fcde01f32848867f4f3b33fc54a8084f44cf940
SHA256

718a6d0968804600ddf6cbe87a485a8fe4580cd85d901e56a0f2f5ac162fe286
SHA512

b7bd9f20da4fe6a0548dcbd49396eb9e986655381847661489be6717a9832442ecf6e1050aafa8c4679e12d7d0fa726b9f1cdc4f18a21eb9fc4c5edd6402583f
SSDEEP

24576:P+i4h1VB2t25Qc8aPgKiRhABRuEkVF8bxxx+JCxd:I3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c876bdafc89177a0142e1d30ffd4861_JaffaCakes118

Files

1c876bdafc89177a0142e1d30ffd4861_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 856KB - Virtual size: 854KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ