b69ebcca06015b15a10793ae2c686bc9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b69ebcca06015b15a10793ae2c686bc9_JaffaCakes118
Size

108KB
MD5

b69ebcca06015b15a10793ae2c686bc9
SHA1

dc34a374d3341d01548190ffe85532961f010553
SHA256

442f5760977fecb5bc86674d626ce77c8cee8744bede64ca87486580d75c0ee1
SHA512

17a411367f96998889dc764b806c6cd485466cbfa031993cc643a171be2e7fded5c57ac6e8cb5b261a528d9478bfb5e6b408a8082746457998c61e2ebf05f6a9
SSDEEP

3072:P7Jyku52zpfMntR8QNkQ8c+0n+2veKut1v34O/:PlykugzBgdKQr+2v8x4i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b69ebcca06015b15a10793ae2c686bc9_JaffaCakes118

Files

b69ebcca06015b15a10793ae2c686bc9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ