cf0bfe3a2d5588e7c32db4f248ce40a8_JaffaCakes118 | Triage

Sharing

General

Target

cf0bfe3a2d5588e7c32db4f248ce40a8_JaffaCakes118
Size

916KB
MD5

cf0bfe3a2d5588e7c32db4f248ce40a8
SHA1

aad6eb25691d3878b3bbdb1799a83c2f98e85d81
SHA256

a81c3b9306151b1f9406703bf5d52ce46e05bb96b43844083a9fee6876c1a990
SHA512

1b22445e2ebd6f33373d14e26daef237162ea7a6935bb35afadb1c6d1be15dfda1f81f775eda6c6db53a8437c3fc2231ca4df700bfa558b35e455a67bf1728bb
SSDEEP

24576:D4DD0yqgSw2OEk4KpqzpXSA9oOXm9ZQn9qY:D+qgSw2OE/KpqzpXb9oa9q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf0bfe3a2d5588e7c32db4f248ce40a8_JaffaCakes118

Files

cf0bfe3a2d5588e7c32db4f248ce40a8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 552KB - Virtual size: 551KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 363KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ