6653ab936e94f468a64014c6b184dc29_JaffaCakes118 | Triage

Sharing

General

Target

6653ab936e94f468a64014c6b184dc29_JaffaCakes118
Size

3.9MB
MD5

6653ab936e94f468a64014c6b184dc29
SHA1

fed18e894a5f7f8d76d959ff084166d0bee8116a
SHA256

410dbd025ffd4d6746a8d2ec8b08e8388e4739c27f18a70e3c05fc639582c01f
SHA512

7d1949599b8feef428f512ddc98df0656f49e506bd1055bb3dfff914c82d80a40cee9a695ab949bf734a8421dc2a9578eac343f9cfe0aedab9b2c696e9b01307
SSDEEP

98304:V11ID2tjNdkr9yH0B8MMZa46di2ppMjwhtF:x42JG9yMyZa41Glhf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6653ab936e94f468a64014c6b184dc29_JaffaCakes118

Files

6653ab936e94f468a64014c6b184dc29_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 364KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ