261638743bdbf32969037378ef0140ed_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

261638743bdbf32969037378ef0140ed_JaffaCakes118
Size

648KB
MD5

261638743bdbf32969037378ef0140ed
SHA1

916d6acf641f0843ed67238d1b5de7d18c70a3af
SHA256

b92a8f157e461d159f5f629fca158ef182349726e07ca479653b2f3e9e3d18e6
SHA512

481ffe41a2e0e73971cc0fa52bc88dc587be4629a13fc7d581f4ef6ab410b304c7453c9befd46a3f74db77c3190c94fd4503cc23e7171214bddef2882d628329
SSDEEP

12288:+Gxosnc/3haYz0z8uqAd0OnhZ7adpwlTVKScUwgdSQ2GhZDyUKd70GLV2:Zxk5PWhSyKUKm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
261638743bdbf32969037378ef0140ed_JaffaCakes118

Files

261638743bdbf32969037378ef0140ed_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 480KB - Virtual size: 479KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ