b9609c5c9e7e61be7b4472bd1f50628d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b9609c5c9e7e61be7b4472bd1f50628d_JaffaCakes118
Size

652KB
MD5

b9609c5c9e7e61be7b4472bd1f50628d
SHA1

421d8d2d43edd8d584d6cb0224a7b97fa27aac5e
SHA256

129415121c233c300ab6edfc7cd5a3925cd502a5eccac46f316fbcf92226ccda
SHA512

9bb3b5fe387b4bbaf0d0e3ece5d6349fd77e0a5e76b287b09ae225ba266629b47c69921e74af40f81f5f198a834b0ddbbbc9e2df0c431a711c8e240bf826c339
SSDEEP

12288:6P1do5S6zGJT1tmgkDQ9obfqB5Y/zb8jhu5Hc:69do5SfurkYUjT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9609c5c9e7e61be7b4472bd1f50628d_JaffaCakes118

Files

b9609c5c9e7e61be7b4472bd1f50628d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 640KB - Virtual size: 636KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ