6ac9f11d26873350331bcc6ea40c1f82_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6ac9f11d26873350331bcc6ea40c1f82_JaffaCakes118
Size

1.3MB
MD5

6ac9f11d26873350331bcc6ea40c1f82
SHA1

e4797b47d9394948192f6b1893d5e91c1b4bf744
SHA256

820961d3cb18b0228319b3cd4bbee380b7cc110223f55508196ba0228d45b15b
SHA512

32070dab6e225ac4e8b5905d24efb520add637d66a12bc88d9429e49c549ce506290488970c51410f97580a2edc015ae07f1b1db573231ca075812a99446c80a
SSDEEP

24576:9Ll1rH55yPzHxpEb1e11knFydrrKT3Nz2DrHL:53D3yPzRes11knFydrrKT3NzoHL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6ac9f11d26873350331bcc6ea40c1f82_JaffaCakes118

Files

6ac9f11d26873350331bcc6ea40c1f82_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Sam\AppData\Local\Temp\1z5i0qck.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 728KB - Virtual size: 725KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 4KB - Virtual size: 97B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 568KB - Virtual size: 566KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ