8b206eca2f8d058af9bf37f9f324b402_JaffaCakes118 | Triage

Sharing

General

Target

8b206eca2f8d058af9bf37f9f324b402_JaffaCakes118
Size

338KB
MD5

8b206eca2f8d058af9bf37f9f324b402
SHA1

2e5e44371492b1f67c4b5ee7defac7d4a3c9006e
SHA256

9edf92248b9f415605e73255c24c8edf6022cdcd2896399eeec7367735249094
SHA512

1fd4ff1fbf711722755e54a44b1c7ff7496326e06c002bdbb42b99edfd6deeb59dbef3c7085a13542da2d2c20f03f73b2ea0730e834cd306168add1d7c31f853
SSDEEP

6144:vcq+yKXJYALtUggr1sJB0UXDexk55vHpc2ypvzo/yxYhKuL3yM:t+yKXyJxsLXDe2X0zo/QumM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b206eca2f8d058af9bf37f9f324b402_JaffaCakes118

Files

8b206eca2f8d058af9bf37f9f324b402_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 336KB - Virtual size: 336KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ