5f647930f7f15e6f89d83a191b927451_JaffaCakes118 | Triage

Sharing

General

Target

5f647930f7f15e6f89d83a191b927451_JaffaCakes118
Size

8.2MB
MD5

5f647930f7f15e6f89d83a191b927451
SHA1

d068401d98b8cc596bebc5e2d98e36917aae0814
SHA256

0145983d75bca431a97b1a0bf89711e4e097b604805cdd6e5e597b476c0a289c
SHA512

ae9669e7e9ad7ea2e3e86f05173513a08cd56a2c3a00a89826cf908761d3215a3414e029e7db180236694442ce7cc70ea0a27ea185f49f01ffedbfae504485da
SSDEEP

98304:gJWZUB/pZg0avJJdsHFxhhAKgt4jt5oRGiDeWH:g0Za/yvLyHFx7A4nNE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f647930f7f15e6f89d83a191b927451_JaffaCakes118

Files

5f647930f7f15e6f89d83a191b927451_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 3.6MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ