6a568583c3d0c70983009eea715ab7c6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6a568583c3d0c70983009eea715ab7c6_JaffaCakes118
Size

1.5MB
MD5

6a568583c3d0c70983009eea715ab7c6
SHA1

0a78335e52389b89ab892b714993a658c0269a78
SHA256

5b70914657ffbaec0a09373d514ebede157b6c5b418dc20aaee097d072a4a6fd
SHA512

7adc146e8e4cc4d54feaeabde3dd5492f017e5ea45c2dcca9720896ceb7e336607bcc284b942ce54c2cedba15d2bfa842193cfe2db8a7e78eed2c0d9f402b260
SSDEEP

24576:4nuyrJ9DlwT5fNnx0UzNI7444IkH4w44wsm3JkqTEBuS6nmd:gR9R+pTTu83l4Ui+1Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a568583c3d0c70983009eea715ab7c6_JaffaCakes118

Files

6a568583c3d0c70983009eea715ab7c6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ