248795a02a220a17dddeb19df8ec0209_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

248795a02a220a17dddeb19df8ec0209_JaffaCakes118
Size

1.2MB
MD5

248795a02a220a17dddeb19df8ec0209
SHA1

11edf97179777c800c14401acb0704b624cb79ea
SHA256

9c8abd4425e1145e783f59e74131523e0749178ac8dd3bb61d066d1eb2a1ce46
SHA512

b57721fe07f6592eaf6cbd4e697f6eb8364ed471204ef67e67c264e34c93ae14d781b9966f1fe33e931176a8a85cef143e109d543d4ba0e0ef5addafe94fc64f
SSDEEP

12288:VWVh3+FV7JRWTGwdLMPH56ARDbv7rMZUp+IlM:VWVh3i3RWPdoH56W/gUp+I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
248795a02a220a17dddeb19df8ec0209_JaffaCakes118

Files

248795a02a220a17dddeb19df8ec0209_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ