a64b1fc36d71e16de0028629af83fa8a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a64b1fc36d71e16de0028629af83fa8a_JaffaCakes118
Size

432KB
MD5

a64b1fc36d71e16de0028629af83fa8a
SHA1

80865615ea590c07358242a2f771bcccc594b50c
SHA256

a44641dc11df1f5a268db4e0cd8d42ad243d8b4a0420acc3a9fe1a191be47fb9
SHA512

b04ae70370d698a53ed6fbde83424b873776e53fb1252a7bef08f6fc0b4b202f0763a9d6fe013cf5bc916660914aa0e69c6af5e1a9e0b6cd59346a970536441d
SSDEEP

12288:Z1di385k+JwwIaUN/cKg50LzEWxo0BZ0MqGmh:ZDi385JiaUNd44PemHYh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a64b1fc36d71e16de0028629af83fa8a_JaffaCakes118

Files

a64b1fc36d71e16de0028629af83fa8a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 420KB - Virtual size: 418KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ