cff52aad27a7a12ba15fbed41b427c78_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cff52aad27a7a12ba15fbed41b427c78_JaffaCakes118
Size

332KB
MD5

cff52aad27a7a12ba15fbed41b427c78
SHA1

aadcce713e6d04f4b2a1a5775f46b7ce1a537829
SHA256

4361a1c25952bd2fe2e5fda5cd896ea29e3bee8cb3bbd21b7f390bf2b7dd86ae
SHA512

4e318d52ae185b67fd39f227aa62a04ef17c5c597c318de8414873d952f9b4cb49fb8b0328079b575e2560baaec35208962a22202921193c39dbda4c102763ba
SSDEEP

6144:gxPJa/FYs16/EKvi0yAEC/N8xy+QOD8TQlWcAlyEPggoBMyb0zd:mJ8109/N8xyxg8HcAly8fy8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cff52aad27a7a12ba15fbed41b427c78_JaffaCakes118

Files

cff52aad27a7a12ba15fbed41b427c78_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Users\Owner\Desktop\check this out.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 320KB - Virtual size: 316KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ