c35ba3fae930a61e313bcd191e31cea8_JaffaCakes118 | Triage

Sharing

General

Target

c35ba3fae930a61e313bcd191e31cea8_JaffaCakes118
Size

2.1MB
MD5

c35ba3fae930a61e313bcd191e31cea8
SHA1

8be51e3af17f9b8054d6bf5836f364b2bcf02692
SHA256

dce5b89dc71688b35db0ca2f7ec3ec0f546faf483cbb3281b71224b7af5827a3
SHA512

b399f96415d5f8cd8c151f1ffb3362601e9d594bb67f9983e8d024d218b13732db39c775c344d7ade83e4efa6b3002446dd1d361c58e467b24e74cb4b9b35cbf
SSDEEP

6144:IxAJIb/lMqQD9t0Sp0LENB9mS0cLd1hzTvrRPR/AMIXRc:Inl9QD9F0LET93DLhz3fA5C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c35ba3fae930a61e313bcd191e31cea8_JaffaCakes118

Files

c35ba3fae930a61e313bcd191e31cea8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 265KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 198KB - Virtual size: 198KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ