5de8340cb0630768f539c5a65f7d30fe_JaffaCakes118 | Triage

Sharing

General

Target

5de8340cb0630768f539c5a65f7d30fe_JaffaCakes118
Size

129KB
MD5

5de8340cb0630768f539c5a65f7d30fe
SHA1

37d988896a29ee7d38088a6f49da0b38ed22856e
SHA256

5a2e52129b8b82929d427aa7f6fbc376c889f5326571f2611b7297fa8273d693
SHA512

954b9985dbe3c3d3dd171e584285a5bfbc4f26a2e257ab3c480d6c93e39845b80d092c8293d935513f0bffa71db0482ae7f4b64d21e6f59ed37ea6f842e2c384
SSDEEP

3072:qtD3PkrG6Z+uHPFPAVjsLFVIDOyPg6J3VDFiVd:EM66Z+mPFPAAvIDOyJLDFS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5de8340cb0630768f539c5a65f7d30fe_JaffaCakes118

Files

5de8340cb0630768f539c5a65f7d30fe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ