297663b1e2d347065a75c9ed75f44064_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

297663b1e2d347065a75c9ed75f44064_JaffaCakes118
Size

236KB
MD5

297663b1e2d347065a75c9ed75f44064
SHA1

8ab46b95dcfd94ecd39ae3da06e2b528e2367ac2
SHA256

e6b8b2c7d01079b731be061b4fdfb3d504c0d484baf16b4b81c6a20002006c77
SHA512

3d5b02b1faf285269906954bee2a0c989014f5d899870bad81654bbd86515649bde54fcfcdee036e220b7fc845c33dd33a06cfc655d2c6663b303bdf0c3eb8e4
SSDEEP

3072:ySwv2D7ssUTltF8ixHsvULq6XZK1dXZyaCdtZuurn8A:A+Ha18i7qCZKBCpuuY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
297663b1e2d347065a75c9ed75f44064_JaffaCakes118

Files

297663b1e2d347065a75c9ed75f44064_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ