822ece4988b0af7c821f40d2547b98c3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

822ece4988b0af7c821f40d2547b98c3_JaffaCakes118
Size

627KB
MD5

822ece4988b0af7c821f40d2547b98c3
SHA1

9813945bb31e94125bc309a25cdb6c3c16039f5e
SHA256

38670fac4494c85ec8da0a8e44cdb89846fafd5ce3deab20f6436d59a593e246
SHA512

b5ce4e78744c6110a6b4aa0a8136ab51ad8b0e09d5d278c7ccfcffba9517fc3890b873c9f9ee5fef19810bca4138544fdf6011bc7bec576b37e305ca04866125
SSDEEP

12288:CSoV3C1JYKxTK6TbYkVRHWqf0AEOx+f3QvYJ:CSfe6wERWZAFx+F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
822ece4988b0af7c821f40d2547b98c3_JaffaCakes118

Files

822ece4988b0af7c821f40d2547b98c3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 527KB - Virtual size: 526KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ