dfc46f7b0396a750769654598e56728e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dfc46f7b0396a750769654598e56728e_JaffaCakes118
Size

381KB
MD5

dfc46f7b0396a750769654598e56728e
SHA1

f77c416b5c9421e861cc51e3da40e7f6d8832c7a
SHA256

83bd940117d0b4c0555060beaea5b5ca1c50a43560b2907765356c985e4d368d
SHA512

84a02892a61fce5f426c5858ea06ee1829eb2c1af8686c9b82b59633892302eec9b27663394f7c30418f5977be629244caffac6973580852ca865301bf4eb4ae
SSDEEP

6144:Lve4xTgW7NkHwoTJt6NdsQ1xwMXLABmJzV9gez/0+QrlQ//hUZaMUy5fW2jNUTeP:Lve4xTgUCZJUNdsoxwMXMBmJzVaezt/Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/new po #7754.exe

Files

dfc46f7b0396a750769654598e56728e_JaffaCakes118
.rar
new po #7754.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 416KB - Virtual size: 416KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ