bb36d658e4761219c5a49e1458dbe979_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb36d658e4761219c5a49e1458dbe979_JaffaCakes118
Size

16KB
MD5

bb36d658e4761219c5a49e1458dbe979
SHA1

0be621b7092e1d63601a3769be512a3d12d0a1d1
SHA256

6f450e903fbb3a3ba8492fc426a607d5dcfafd0f2fff5716d0e569dece5eedb3
SHA512

a6b876a2a7c92e7d567919be54f79555e40b499e9af6cf14bc1a0ddc9977495add7ac4ffb32b3cb43037a82d30fac6328ffaae79b942be16773c1909c518fdaa
SSDEEP

48:66TsLURlw4EWAkyMpM8CmAtJAKq3yg9Kr9vk7qgSfbNtm:XQLUD/ukf4M37IPzNt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb36d658e4761219c5a49e1458dbe979_JaffaCakes118

Files

bb36d658e4761219c5a49e1458dbe979_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ