a7bcd9a959008c4fe14cc085bcc6ceb3_JaffaCakes118 | Triage

Sharing

General

Target

a7bcd9a959008c4fe14cc085bcc6ceb3_JaffaCakes118
Size

1.9MB
MD5

a7bcd9a959008c4fe14cc085bcc6ceb3
SHA1

a429814d18f18055f977f1f88ff3137c40ccd0d0
SHA256

56563d4cfdb3f4d4e364d89ee365699f87e977eb4031e37e95132da4d4567301
SHA512

c7adddccd55b54e3e623cb3f6f82d17444a3397ec020b9873451b9cce9fbaf73f3a983face83ef25d39ecc03d4af2649d8429020c499c614713d535ecc0bfd6a
SSDEEP

768:nAvXGprCcYhDD69ws1oz88q0nasjwAcqnjYBmbsHnevkDbtRn4/fIDuIApf7Rbkh:9Ko

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a7bcd9a959008c4fe14cc085bcc6ceb3_JaffaCakes118

Files

a7bcd9a959008c4fe14cc085bcc6ceb3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ