d3881353010a24a7891041fef602db64_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d3881353010a24a7891041fef602db64_JaffaCakes118
Size

912KB
MD5

d3881353010a24a7891041fef602db64
SHA1

da4ba4d147639925d1764e2462ee01390265f789
SHA256

c7083a70b7359ff0248fc57a8b63bd9fbd2756e6693ff787d919f28d382578d8
SHA512

e988464b5fb7c6780005b7bac27b8d6c55ef4edd1c7f4d2966a4fbe51ec3d66f560e7fb2cb60dca24ec3e4d68f1c7906b9e0fe05b7a3cfa7179f5277cceaa6ab
SSDEEP

24576:asaseSOO/113Qb+8q20GT0qDNHbDLac0aW:asasuO/THGZJHCF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d3881353010a24a7891041fef602db64_JaffaCakes118

Files

d3881353010a24a7891041fef602db64_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.rsrc
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 161KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ