955fb2cc3b12538c42c02425529ef237_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

955fb2cc3b12538c42c02425529ef237_JaffaCakes118
Size

324KB
MD5

955fb2cc3b12538c42c02425529ef237
SHA1

f64083a2f0e50eb103df137adc8ef5b9cd5a5636
SHA256

6a66193c3a5aea43647f3a2d1be1189c6a34460c9317316c355b70a77ea529ce
SHA512

4351fdb02a4167079644cac845fce79d4159e9ec39bc0011e4e0cc9304cdd5b6c1d78e2fce967d8e10777a0cea0e2fde7a7af1da54e245a4e4fbcb64bc4b60df
SSDEEP

6144:GWgw/k4AXex5q+ghh0xok+kSTOaA505fCX82ZBcg5:G/w/k45x5w3yNQDDU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
955fb2cc3b12538c42c02425529ef237_JaffaCakes118

Files

955fb2cc3b12538c42c02425529ef237_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Monster\AppData\Local\Temp\q114z3fk.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 308KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 4KB - Virtual size: 101B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ