826879ed0aca9638cd7714e691707a9b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

826879ed0aca9638cd7714e691707a9b_JaffaCakes118
Size

66KB
MD5

826879ed0aca9638cd7714e691707a9b
SHA1

db1b6257bba72acb262993467a18d11a80a87e14
SHA256

a05b9bef576d5bd463214beb74c6d36c4cc72fa8d0612f287f7a0384dc06ca41
SHA512

70f95a053109803298d6d84b5a9a44147303b749beeb6b36d20d3a23d2f8092d1c8c6aa64fc1d4d1283443b8f50fa3604d0b3f38ad162bd75f7f224096258a0a
SSDEEP

1536:Wy+hKAvDsJ5jvkxMSTYXlsHy86iYYD3vl8Fedcsk:89a2MFi6iY8vl9csk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
826879ed0aca9638cd7714e691707a9b_JaffaCakes118

Files

826879ed0aca9638cd7714e691707a9b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 27B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ