ba20c3603360886aea08d272acdeaa24_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba20c3603360886aea08d272acdeaa24_JaffaCakes118
Size

284KB
MD5

ba20c3603360886aea08d272acdeaa24
SHA1

7ced79a92dbc3947d4fec80df25e1d0d1198c7cf
SHA256

6450c1db27e83513f924020397ebb7ead3abce5791a46506426d7c85b62d8897
SHA512

7a1bd91efd33dec5903b74a1c4cce56f87f5b5668b7d918751163dbba341a057d81f67732101f395379dae1eb9e98d3f228e6c47073feed79d570aacdc444287
SSDEEP

6144:/jy4gYAFeYSW7+S0LOkm3I50CbmqYTL2L8qRu0Jp9SSJ:ry40+SOOkBpNYTL3qRumb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba20c3603360886aea08d272acdeaa24_JaffaCakes118

Files

ba20c3603360886aea08d272acdeaa24_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 278KB - Virtual size: 278KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ