25daa4149be5c620b13e4441071b63c9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25daa4149be5c620b13e4441071b63c9_JaffaCakes118
Size

468KB
MD5

25daa4149be5c620b13e4441071b63c9
SHA1

f4d52db94bf8c39af1abfdf0ec21e78ea4eb92b0
SHA256

947eb9d7a1faf65865efbbd8b823aef33ffb17aedeac6fb0506e1bef3eedd883
SHA512

0750ad4c5ebb240ca10bd2f1ffe448595467fbf27d9a08caae967d85c85af7f637719e3b916b1f42e33874279424c7a2eb347a6405411aa221d5c9be78d832ba
SSDEEP

12288:xBSTs7lMeaeK8RDaADzuF2yb4NBeQDjyoUK:/77UeK8xaAeAc4lDj7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25daa4149be5c620b13e4441071b63c9_JaffaCakes118

Files

25daa4149be5c620b13e4441071b63c9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 456KB - Virtual size: 453KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ