acb6c218e44ea8395d35cb0b12ca4667_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

acb6c218e44ea8395d35cb0b12ca4667_JaffaCakes118
Size

380KB
MD5

acb6c218e44ea8395d35cb0b12ca4667
SHA1

fcf1500929fad97e90d38123bab87d9c0e04f837
SHA256

0278d7daf551c685ee2f80586ee2ec474b800ce415fc77e4673e6e87cb69ac3e
SHA512

b2820b6c5088f2db8c13d38b7b35fd024c2acc1a6ebd6d349618e2dbcaa138431a173eb5e1367fe6379ce90f85eb605fd65992de4a40367a21d0bf1ae119672c
SSDEEP

6144:rIK8DoAV+SFq5JjdSv7VOq7KkeyZchL4Sb3+2nAH1tewFs4hKiZNT1cACTfgjd1:rgsAZq7jAv7VOqteyZcBBbTnAHbeks4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
acb6c218e44ea8395d35cb0b12ca4667_JaffaCakes118

Files

acb6c218e44ea8395d35cb0b12ca4667_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Chad\AppData\Local\Temp\0qhpmfrk.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 284KB - Virtual size: 280KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 4KB - Virtual size: 98B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ