23ecc65f9108e60ccd765c1e3347ed83_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

23ecc65f9108e60ccd765c1e3347ed83_JaffaCakes118
Size

413KB
MD5

23ecc65f9108e60ccd765c1e3347ed83
SHA1

5145b5f65264875f5d441893cdbc8bf370a3565b
SHA256

0b883655a060c3ae39db71e79e90c5be71148a5c3dc30c9fb9ca770951942b6a
SHA512

3e5960b9f0dd5e07d71a092a468afa94b025c1e90f086c59e0d807adbe2b5b44d3dc99be83709895b85e17fade38c63cdf837097e30ae668088ad12a0673d9e5
SSDEEP

3072:etOJZObfYsh6W151Z+Uol9sAht8Sedd3Z3g67MPSa3HAU13vhL/5xA5a1RZOaCRd:GOJZwfzkW129FtnM6Ysi9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23ecc65f9108e60ccd765c1e3347ed83_JaffaCakes118

Files

23ecc65f9108e60ccd765c1e3347ed83_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.textxc
Size: 300KB - Virtual size: 299KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ