ef0fa5bea4c6776d7832c58a7ab0038a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ef0fa5bea4c6776d7832c58a7ab0038a_JaffaCakes118
Size

172KB
MD5

ef0fa5bea4c6776d7832c58a7ab0038a
SHA1

607753049c1512b00567edf0b755401ff72316dc
SHA256

1192daa774a97da7376cd567e7e97eb34f2c56f10cd904c7643ef2d035bfae8c
SHA512

58224a75f125ed6b7512fad2330597f251e0b3634436c64642f2690699580bd85003d851991b3957c5b382e3e8a0e3ce0f2e798ed28c6e688a73741352d21689
SSDEEP

3072:gwNkvFrglXWwm4eDtE0HVsTUoMJHVHyQQQzIb28:gwkd0YTp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ef0fa5bea4c6776d7832c58a7ab0038a_JaffaCakes118

Files

ef0fa5bea4c6776d7832c58a7ab0038a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 160KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 696B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ