d492ddfd31dee5de0675986078e67eeb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d492ddfd31dee5de0675986078e67eeb_JaffaCakes118
Size

28KB
MD5

d492ddfd31dee5de0675986078e67eeb
SHA1

85fe3bd1cfeab4c0d50ca9326d68ea7adcc622d7
SHA256

b14020da693a3cf24f6768fc184d6bf4895a38bf5c633c5423a95f3d39e27a86
SHA512

3b0fb66520d8bbcf7955efdb619b047054d90806ed501e15e5437ec4513da51a52099c3fdd21f2f9b491f7f6e7e627573946cda1f5f1998f2d86f3a3eaff58ce
SSDEEP

384:yrf91Gd/6mEHGpT93Uf+31iUheTWkKI/c+O+uEqBJc3rB2H0CWeqpgRbOs0JUJO:g4diHGfUf+FiUE6ktyVirngo7WRWlaZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d492ddfd31dee5de0675986078e67eeb_JaffaCakes118

Files

d492ddfd31dee5de0675986078e67eeb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ