4265882306069b8df26789337eb75bbb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4265882306069b8df26789337eb75bbb_JaffaCakes118
Size

462KB
MD5

4265882306069b8df26789337eb75bbb
SHA1

0cc75afee19dd9e28203a3d15709561c4b133aad
SHA256

a7557c1ce4f7cd6229c653521da4ef5914b65ffd9b2d060e1d43bde763ff19bb
SHA512

d4a2c1b6b9f0e9e9074535f3f6e9056563d7f486c2f677bbc76cd83fe2db4a85a9e34a01620c953554a05d4404e82bea666c89e5f24dc274bc37098d3040666f
SSDEEP

12288:oQxF3vxX4OobqJ9y1XjrQu2bLw+NVSd02kxvWVlbRcN:7rXilI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4265882306069b8df26789337eb75bbb_JaffaCakes118

Files

4265882306069b8df26789337eb75bbb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 444KB - Virtual size: 440KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ