343a256ae9d13bfd0df74760bae48073_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

343a256ae9d13bfd0df74760bae48073_JaffaCakes118
Size

99KB
MD5

343a256ae9d13bfd0df74760bae48073
SHA1

1cae99efce71504fea4287f02773e6a44468fd40
SHA256

9d2808e7316f971eb464443ff1c97eb98a2f418e1f5b52c93d42af0c3af33d0f
SHA512

36324d8f689e1b94fd44bd1a4d1977f69d9baaa0fc1e7f6f7ef5e25d8f6129406f45e9df70c9da4340245ad20c3974f950834424debea347779e944bd91ba64d
SSDEEP

1536:F7xXjVp1eaZ3lZQHsvHzW9cRnhXhfo4CLjP+fDEDCeaZ3lZQHsvHzW9cRnhXb:ZxXR3eK3PzvtfcLb+fDEDCeK3Pzvv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
343a256ae9d13bfd0df74760bae48073_JaffaCakes118

Files

343a256ae9d13bfd0df74760bae48073_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ