e25bfc6925d6e3e05689f72af7939781_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e25bfc6925d6e3e05689f72af7939781_JaffaCakes118
Size

412KB
MD5

e25bfc6925d6e3e05689f72af7939781
SHA1

dac3011d6583e9e6b015107bf8bcc0ce80cbe35f
SHA256

699272f20783afecad148256d78966f52204da66f452e2cd8e56ca38f5a29593
SHA512

5595c7ee16cb681fc780ba401c11016790d7b400fb061cb42613ee089b14ec3ef2fbd8587e54208caadb97a625a871263242947e328542c7ea63c05110391f5b
SSDEEP

12288:aCsxaiiy5MnuERRRPzG4LbC9jiNIJEuV150h/:oxhi6M5dPzDC5iNIX5A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e25bfc6925d6e3e05689f72af7939781_JaffaCakes118

Files

e25bfc6925d6e3e05689f72af7939781_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 400KB - Virtual size: 396KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ