cea0a279fb115217ec39f4f04181c02f_JaffaCakes118 | Triage

Sharing

General

Target

cea0a279fb115217ec39f4f04181c02f_JaffaCakes118
Size

336KB
MD5

cea0a279fb115217ec39f4f04181c02f
SHA1

527f0e39c323a251f1f135e9ac72fc9404f8d047
SHA256

2064a4f060420b125d2b8a3185e143ad7b5aa157aa50f898f84e4683d8f5ae41
SHA512

9721864f363dcaba8ea9953e4b42dab2dfcc0e34da1ed592f3a562ca41301b779be98dc73c177f262cf591d862a1d4c5da1c0d44c9d739ade02fbe0a7da8f498
SSDEEP

6144:95bGfIow+ftRUZB4rKIt8ZB1apjB/C4bxAcw6bh0yH1z85iL1g99:9sIp+fQ2rKe8ZBQ9C4bHwOrz8ELq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cea0a279fb115217ec39f4f04181c02f_JaffaCakes118

Files

cea0a279fb115217ec39f4f04181c02f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

�xFdR~j
Size: 269KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ