db780f3cad3e25086d1af700fefd36e4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

db780f3cad3e25086d1af700fefd36e4_JaffaCakes118
Size

428KB
MD5

db780f3cad3e25086d1af700fefd36e4
SHA1

0923ed5600d0edf8fb26723f0c9a017875980554
SHA256

068bba0411d708bc319282f9d98ebcfeaf83e735740497cc16eca39d584604d5
SHA512

494594080806452cd98e60c2e8a11c38c8507a6dcdfc8a3d27fd38cf69a727deff57a352b5c8af267f0168fd0f2af29fcf642cb39a37c937790000b4e823c515
SSDEEP

12288:zhfxhUSEm7ahdlcy5qAK/V2qHiGvmrVuNptx5:zhf8Sjeh4uqxVDHiGveotT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db780f3cad3e25086d1af700fefd36e4_JaffaCakes118

Files

db780f3cad3e25086d1af700fefd36e4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 425KB - Virtual size: 424KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 660B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ