c320c558a90c42a9c570dc2455780acf_JaffaCakes118 | Triage

Sharing

General

Target

c320c558a90c42a9c570dc2455780acf_JaffaCakes118
Size

573KB
MD5

c320c558a90c42a9c570dc2455780acf
SHA1

7613cfd2cc7ba8e63db2c922abd6106ef19bba5d
SHA256

662ea90b2fb0a9be4630a36eb54a25f95de350ecdd29c1b12f4ecc1c7469bd93
SHA512

a7d4897401a06c4b119a23a6af52ea76193b3a3ab2c9002357e6af584358b82a36b7757f24e39922212fd23a2e4c27999586e78d8b5f014eb0ef1d790df0374d
SSDEEP

12288:io4764ic07rICLkro9HnDG91RTmjd0EnSlGZ:ioU8XICVMmj5SgZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
c320c558a90c42a9c570dc2455780acf_JaffaCakes118

Files

c320c558a90c42a9c570dc2455780acf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 569KB - Virtual size: 568KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ