f698a13e53453d0bb6e69bfba08dc6d1_JaffaCakes118 | Triage

Sharing

General

Target

f698a13e53453d0bb6e69bfba08dc6d1_JaffaCakes118
Size

238KB
MD5

f698a13e53453d0bb6e69bfba08dc6d1
SHA1

0f3ec5b8e4fab4231b4eec0d0bf73bfd762761b5
SHA256

615aeb4a6f7f475dd8b6efb28e2bed12628fc2769e7ebeea379ac1fd677e573c
SHA512

f7d8002bd95505c2c45e285d4863014f9753ecbded3a581bc4526ad95a8ff430e874f7823c3609c55b894b4b23acda896abc90f18d7752bc368a87fcd9be02ba
SSDEEP

6144:3FrStv01RyBjL5Sp+XWMaQMpZIALPTxo/qDy8NzLLEm:35StvuRyBjwpp/IClqX8Nf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f698a13e53453d0bb6e69bfba08dc6d1_JaffaCakes118

Files

f698a13e53453d0bb6e69bfba08dc6d1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 233KB - Virtual size: 233KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ