a329cf441e864caf6e5888b692d93a46_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a329cf441e864caf6e5888b692d93a46_JaffaCakes118
Size

172KB
MD5

a329cf441e864caf6e5888b692d93a46
SHA1

17db2f64b25955600c11c35577767db6e577913f
SHA256

91c2ae013a4249b8f6f342519ae5a2d70dadf030a39476bce05243294ca40af9
SHA512

cacccb49b05c0ad076430c11b8623b0b26d1824cdee446ff6986eeba8c384545d48725b208e96f23e9a9a42b3d09b0dfa245544b94331f495a8841a9a8d4d5ed
SSDEEP

3072:Y4L40GN0sqIktuGC2+vsusYxN6oVZ6MZt80b/4I9O8ie8QMsVxrdepp:Y4L40AmIhPsusYxNdZDpb/4RmVBd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a329cf441e864caf6e5888b692d93a46_JaffaCakes118

Files

a329cf441e864caf6e5888b692d93a46_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.textxc
Size: 156KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ