6728594f6cfd2b9e8e8c9e3a6ddbae64_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6728594f6cfd2b9e8e8c9e3a6ddbae64_JaffaCakes118
Size

2.2MB
MD5

6728594f6cfd2b9e8e8c9e3a6ddbae64
SHA1

e68a45b68bcc1d30a1e8731791a01af5d636fd98
SHA256

a1ea96a357884d6089a451d34bc63e564f2f72e1952ac8fae0b540cb4b8f843e
SHA512

c3e31d71c3a4960047162c12f93b7b4b5207dc0f295e6874b7dc057e1a2bc4c80c71314968404124b2247a31cdcee6025c25c6a41f463222fe1067f0c20cbcf0
SSDEEP

12288:cfCZVJzlvS+S+r1r/fMZA1j8cxPrSOQ/h8xTVuoG9SPJz68NfjCCNrYsu7PwsiyT:dVJzlvSm1/fMZA1p4StFxdGmxm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6728594f6cfd2b9e8e8c9e3a6ddbae64_JaffaCakes118

Files

6728594f6cfd2b9e8e8c9e3a6ddbae64_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

5S%cFv
Size: 215KB - Virtual size: 215KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 210KB - Virtual size: 210KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ