b42be667e27e1ec3bde4664892e7c9ab_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b42be667e27e1ec3bde4664892e7c9ab_JaffaCakes118
Size

234KB
MD5

b42be667e27e1ec3bde4664892e7c9ab
SHA1

863435a2cf1258c8e16f7b40eacc819de70dcfa8
SHA256

c775276c998947ca6119a43398dee876fb375d6eddd6b5276fd49b484fe0db92
SHA512

d1f8bfdc2339adc5f083af4d971d30152213f2317afc6ad000ba926de3aef073e2fdff97ad00c4cccd01c37cd9b338c209b8c147b74cda34f449389170dede0e
SSDEEP

3072:rXBBaZlNWqQ1CWwOz9paXjoTs03o5258xFIP8zI3t3/7OlFGum3:ravt03s25DkkhOM3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b42be667e27e1ec3bde4664892e7c9ab_JaffaCakes118

Files

b42be667e27e1ec3bde4664892e7c9ab_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ