899d71edfd93b02874bfe620736d4480_JaffaCakes118 | Triage

Sharing

General

Target

899d71edfd93b02874bfe620736d4480_JaffaCakes118
Size

355KB
MD5

899d71edfd93b02874bfe620736d4480
SHA1

7f6a382da4b34f5d3b5da63f3b21416bd2f19a9a
SHA256

c89232b9392166c2c29424ac0129238f6557cbf42a69f60ebae473bf785e975a
SHA512

b2d99b1377f5a3c878b563142565338c38c8318a8d16d2d8aea6f74275c505a28427c3ba212216b515422fbcda383e61ecefb513fce1a738eb35cb33e0450b51
SSDEEP

6144:49BHmtW3dfReDKodfut+fRI1iAFNjKYU5M9GFfMvmCCzhoy88F:4eWtfaCVPTjKn5M4pC2hoI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
899d71edfd93b02874bfe620736d4480_JaffaCakes118

Files

899d71edfd93b02874bfe620736d4480_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 335KB - Virtual size: 335KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ