aa789153211fea3744cabbbda34d993e_JaffaCakes118 | Triage

Sharing

General

Target

aa789153211fea3744cabbbda34d993e_JaffaCakes118
Size

376KB
MD5

aa789153211fea3744cabbbda34d993e
SHA1

1ae720b4e9bb6e2bb0f21eb316d0fe21bef94ca9
SHA256

93ef266984d87724257a1f42a42b8012c462ec0f2cd22a4aa4573955cd43dc55
SHA512

edf4c41a399837277490611ff1e981343f0068d7dd80ae8f36236f95cafb74047cdd30132eb06eab71ae0c23e4dfd6f0bea1b4cae469974a56aed62dd540e419
SSDEEP

6144:LqaJsklxEmX0fDe48vZRD0Q2qUOoF+rSY/vHrtF/z:OGH34GzMJwSABF/z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa789153211fea3744cabbbda34d993e_JaffaCakes118

Files

aa789153211fea3744cabbbda34d993e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 161KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ