a930a03cf35df547aff114f4be1fbe86_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a930a03cf35df547aff114f4be1fbe86_JaffaCakes118
Size

628KB
MD5

a930a03cf35df547aff114f4be1fbe86
SHA1

8c6da98103aae8b3f745198dc4c8dfac01264d4f
SHA256

04075e16b0e73b69f0de3b59540a9b43c6b656c7281711984bfb75420e4665cc
SHA512

4ea50f6cf7b73d5340eca6a2a14e05b4e16d23ee0c9e93f36d5db546a930981f57432dd75672b6633d904e8af4612d359064cd3e24c69d439f2e12f3b90bf9d7
SSDEEP

12288:6W5nc3yd5exU9oBD1ndbMdX9eikVk9Zi3fuaL+T/zDbok:PlidsX0TVsL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a930a03cf35df547aff114f4be1fbe86_JaffaCakes118

Files

a930a03cf35df547aff114f4be1fbe86_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 616KB - Virtual size: 612KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ