e2aa859c2c58d6de3cfb8f22295b2b2d_JaffaCakes118 | Triage

Sharing

General

Target

e2aa859c2c58d6de3cfb8f22295b2b2d_JaffaCakes118
Size

1.3MB
MD5

e2aa859c2c58d6de3cfb8f22295b2b2d
SHA1

0652a55d57ea4060dc68812aa781d12d074601da
SHA256

748bc75a3e179e83538908c7f022327558826b61d2767335d89fed1b51222185
SHA512

a51d9de31c51f1f3ea151d3be0255d7797d3861c98d97b14c793b649ab6f1aa6947201a021cb9d623429100d5b28924a610762ced3979c648478c6b0d5c0afbe
SSDEEP

12288:d6NkudPorJGE5wJGE5pA4QAXDzSml+duSHNdj:dJNyJN83Azb+d3Nx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e2aa859c2c58d6de3cfb8f22295b2b2d_JaffaCakes118

Files

e2aa859c2c58d6de3cfb8f22295b2b2d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

Q/liC
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 905KB - Virtual size: 905KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 407KB - Virtual size: 407KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ