7aa1a4ed6b8776c2b2ba5c999c6a5d22_JaffaCakes118 | Triage

Sharing

General

Target

7aa1a4ed6b8776c2b2ba5c999c6a5d22_JaffaCakes118
Size

648KB
MD5

7aa1a4ed6b8776c2b2ba5c999c6a5d22
SHA1

b30d9bb52aaa3024eec9a3c662b6e19265cc3cf2
SHA256

bc9084e36a37d02f116740df25e23a40ef3902a3e2da11cc94861f5a71d31377
SHA512

f2e164f190251795a4ba5758bfa8fd703e5df950b624a8efc2dfac95580159efa5b50c35f425efa0e0d438404cdaa8699918c0e21c97e20a08c28ceacbfaadea
SSDEEP

12288:Fn95fBkDkiKDhab2TCvM6ZQz/pusP/7PEHOTDY7idSI9se5pZQcTc4bEpfpghVfU:R9xBZjw8CvVQrQuDmwDTVy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7aa1a4ed6b8776c2b2ba5c999c6a5d22_JaffaCakes118

Files

7aa1a4ed6b8776c2b2ba5c999c6a5d22_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

?v1{
Size: 420KB - Virtual size: 419KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 222KB - Virtual size: 221KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ