d627f33613c58140a364e10fcafc369a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d627f33613c58140a364e10fcafc369a_JaffaCakes118
Size

428KB
MD5

d627f33613c58140a364e10fcafc369a
SHA1

8181f809af4afa2904e1248c7d2628fa469ac7db
SHA256

460526d6ee938b9cafc12673194a7e3970528f09f9ee9dd356ec00e286536ab3
SHA512

02431f971313653af25c5ae5b184c6b8323b8db92075c5e9262b928933b76feb1504132857519b1e46de04b0d9b83c3160250eb1a28195eae2ecffecf0a7c884
SSDEEP

12288:pCJ+o9q2f/A7stFpPT49FBiNA7XzaBxBw:cJg2f/+sG9biNNxK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d627f33613c58140a364e10fcafc369a_JaffaCakes118

Files

d627f33613c58140a364e10fcafc369a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 416KB - Virtual size: 414KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ