3bd9ed1ed3f23f68093981bbb4eba915_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3bd9ed1ed3f23f68093981bbb4eba915_JaffaCakes118
Size

448KB
MD5

3bd9ed1ed3f23f68093981bbb4eba915
SHA1

ac5218bd59e7b66c796b41028ef8fe1ed5ada756
SHA256

d7737bc319e5e0d5c9dca67a6d98cd0e1db523e66848e489c530d6076f0b70c7
SHA512

3d29c7fa1156da8aa49a25e4225364b9156bfe8e378d957ff2c64d6bd92299224f7f38802ddb2ffcbce3ef9af4777071106f4ed2cf673d532bb94edcb4efe232
SSDEEP

12288:SeDSrGK38p6G41G92ZmJoUSKtrm7TiEByG:VDxKspV41G93bJwTi2y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bd9ed1ed3f23f68093981bbb4eba915_JaffaCakes118

Files

3bd9ed1ed3f23f68093981bbb4eba915_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 432KB - Virtual size: 431KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ