78c1fe5e37783f64704335ebae1520f1_JaffaCakes118 | Triage

Sharing

General

Target

78c1fe5e37783f64704335ebae1520f1_JaffaCakes118
Size

705KB
MD5

78c1fe5e37783f64704335ebae1520f1
SHA1

ea937129d39f86899fa0c103d89dd75cb447c518
SHA256

ed29be13a5ecb1fb3c072b8b398ea9dbeae3c1ae389f9b1eb4519be020c882aa
SHA512

3effec3f9da035c9787078828871d062f72f2d409b8be57778fe64a3b4e2fa836abc51ea34940ab76527a5524d1b5f7b4f69c6745abf243f2d1afab751649b10
SSDEEP

6144:hlSuJBbblPI3sp7ScV1zQWXdo6G8nG4ZUkqa:rHSgf1lKz8ny4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
78c1fe5e37783f64704335ebae1520f1_JaffaCakes118

Files

78c1fe5e37783f64704335ebae1520f1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 422KB - Virtual size: 422KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 282KB - Virtual size: 281KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ