6bedcbadfbf022044087051b507e5723_JaffaCakes118 | Triage

Sharing

General

Target

6bedcbadfbf022044087051b507e5723_JaffaCakes118
Size

193KB
MD5

6bedcbadfbf022044087051b507e5723
SHA1

4fd9ff69d651c3c9ef42a756512032d6ae9f288c
SHA256

da3baccf846d83fcd3741356aae3c5e9bed59f6217a13a9c900e2a20330ac80e
SHA512

e02b484222b9a721e8c8340874ae8b61a80d026138af3104327622b71e176d029a6a74e3502d20dd7c8d7f3124a6535f52be105ffe21b1a7d83bbb81907c91ed
SSDEEP

6144:MBKqa8XGJBD07YgoIKO7encriGhTgw6T4w2sXPk0:+XkDoYgPd08TOTEx0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/win32.exe

Files

6bedcbadfbf022044087051b507e5723_JaffaCakes118
.zip
win32.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 279KB - Virtual size: 279KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ