d1d2004be7d09ef8cd1482fc713f058c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d1d2004be7d09ef8cd1482fc713f058c_JaffaCakes118
Size

286KB
MD5

d1d2004be7d09ef8cd1482fc713f058c
SHA1

b6b6438b7af25fca83206ea36596b9505c5507a9
SHA256

a0373c1af8d92e1339c22f9f3fb2bfc1849b255e066246f47c9e889ae8f9b431
SHA512

addb3722f3d5a2553c9ce56822c45fcdddbcb28e19b9db8c0e9ca7b1a029f9e1425a523d3b410a2d528df45d0789b107dce05cbb0fc2fbdb2cf27f9c71961d64
SSDEEP

6144:rfEgP0hwT34QnRLnFAhnAlNXfuXp6+1BOSi0:w1yOli1f3iOI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d1d2004be7d09ef8cd1482fc713f058c_JaffaCakes118

Files

d1d2004be7d09ef8cd1482fc713f058c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 218KB - Virtual size: 218KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ