b7c3f889b9e53aa61768c15ed0a97961_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b7c3f889b9e53aa61768c15ed0a97961_JaffaCakes118
Size

452KB
MD5

b7c3f889b9e53aa61768c15ed0a97961
SHA1

6704d2528ba7cc2a71b92ab43b74d028ba9f0018
SHA256

1231bd9e904e85ac6c5a85bff7c741684eaf9b925029479c43635d614ec70959
SHA512

d4a34d7d26a58d920630d742ac4b45e9acf06990ef9175c9f7a0e7d750d56db47dcb6c861d7d050a6e57eda953ccbfd4be0c86eb6141e987b2de62f83bcdbcf0
SSDEEP

12288:xF9uDZO9ulNMZcMuOSwi8ZTUA4Vmeou+m0t:x7oZO9ulNMqMlTh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7c3f889b9e53aa61768c15ed0a97961_JaffaCakes118

Files

b7c3f889b9e53aa61768c15ed0a97961_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 440KB - Virtual size: 438KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ