dc6d59d5da35e1d424163969374a0387_JaffaCakes118 | Triage

Sharing

General

Target

dc6d59d5da35e1d424163969374a0387_JaffaCakes118
Size

527KB
MD5

dc6d59d5da35e1d424163969374a0387
SHA1

858f0f1337ca084dd230c72b4439cce031957124
SHA256

247c5fa7aa5b3c13587938ffcff5148c7f7707acf05cc745c9abbf7c1cb34875
SHA512

048799fba76ce9a3a2470dd426f961b575cee0a04f50d1e0d754fd84d690ce7a6608fc5730d6c6d2f11a40959cbd373ffa50d78de9b0843a4f7dd0b512cddc33
SSDEEP

12288:eys7B0mOvTt0i9eCTHdRKEobR0w0bIy1PUm0Sn:FXm4v9tT3LAq9ZPOSn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc6d59d5da35e1d424163969374a0387_JaffaCakes118

Files

dc6d59d5da35e1d424163969374a0387_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

wG
Size: 286KB - Virtual size: 286KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 177KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ