bf01fb2c775058f7efcd13cc0a5fba71_JaffaCakes118 | Triage

Sharing

General

Target

bf01fb2c775058f7efcd13cc0a5fba71_JaffaCakes118
Size

516KB
MD5

bf01fb2c775058f7efcd13cc0a5fba71
SHA1

56bdeec86c03c208278fd01760853d5b5df2212d
SHA256

31f379b712496761d524d83a73ec2d8dd86f49a7f941fe8b716a25287431d764
SHA512

a59f1ea5dd1dead4d54fa79d15aaf7dcc4e286f1a04ab34b06d905067b8c22cc1e1857d414ce36ab2708bbba44dc4fd11bb754febb46141cc69c9e7f8d175bc2
SSDEEP

12288:3H7aBH9ZL2dOrdN2vWy0hsJBpRIUbGilG9rE6deGOcEq9c:MCdOrdDzhsJBXLbGCydeGOY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bf01fb2c775058f7efcd13cc0a5fba71_JaffaCakes118

Files

bf01fb2c775058f7efcd13cc0a5fba71_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 504KB - Virtual size: 500KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ