920a84f8fce7b1b7bed3e1c7dfed6ace_JaffaCakes118 | Triage

Sharing

General

Target

920a84f8fce7b1b7bed3e1c7dfed6ace_JaffaCakes118
Size

931KB
MD5

920a84f8fce7b1b7bed3e1c7dfed6ace
SHA1

62ec70792894b003aa5ad208b576a2e182f0d3f0
SHA256

a36735377d731d16330587a190a99acbd5a1d9556e066d771268f8b4b6cd3821
SHA512

f2da84c7e5f0154d45b7db2077b3bc514d6bf5d9de41888ba0469ceeb545c01455730d45144e07daabeb789ee85ca7978a55ac18cd57cfc2771204b58bb5aed2
SSDEEP

12288:LR94nvMreRXa/yla6Uqm+o/kDrzlqGZQ+3ocujQNIqWiLpYruy5g1aj9/RdLIT5C:LR9eRXa/Sa6Uq0/kDrzRb26nnjqKoeK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
920a84f8fce7b1b7bed3e1c7dfed6ace_JaffaCakes118

Files

920a84f8fce7b1b7bed3e1c7dfed6ace_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

Y$(
Size: 506KB - Virtual size: 505KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 200KB - Virtual size: 199KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 223KB - Virtual size: 222KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ