59bee1da3105c006236be960ebad8c29_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

59bee1da3105c006236be960ebad8c29_JaffaCakes118
Size

1016KB
MD5

59bee1da3105c006236be960ebad8c29
SHA1

8e90d5c60b831da867a8062fcd93365824484160
SHA256

f00b49ef928ef12186521ee966f04f8f0e9206caa2fb5516b3e7d2b8cf682214
SHA512

a626aa4fcb156854f38451eb357731f0c90c6845efcb12072cf70942d72821cdb6325497fa7c9412c45d2acf5c0fd815b22b9ace4eca141cba054661a281d155
SSDEEP

24576:VSPRSTN+7W1V7ceHzRasKNWYobUvHrJQY:YPmvZzgpNFVQY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59bee1da3105c006236be960ebad8c29_JaffaCakes118

Files

59bee1da3105c006236be960ebad8c29_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 854KB - Virtual size: 854KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ