f72ed95e4a073f33f61492aa44922fe6_JaffaCakes118 | Triage

Sharing

General

Target

f72ed95e4a073f33f61492aa44922fe6_JaffaCakes118
Size

370KB
MD5

f72ed95e4a073f33f61492aa44922fe6
SHA1

52c3d8a6f5c560ad9595a4f1469a3c834b25dfc7
SHA256

3c20a25596bccfb12d439e1da68109e024822b6dbb2f29d92efc08d606e277e6
SHA512

2da2cc075c1d8c5b277a553ed8bcff7b475993ddf958b8eaa1c42379112be78d649874b8629407139ec9f3befdf3b89e6c80b732db6001c2ea03fb339d84f7e3
SSDEEP

6144:QZy0cD9kQnjVtGoWezNmg9FWJIJiiY8A94hRkpCKDlCTQSN1oEkYbnN6SI/fc9G:rhTptGo6hiY8C4cg17ndDNyc9G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/cl_5284523690.exe

Files

f72ed95e4a073f33f61492aa44922fe6_JaffaCakes118
.7z
cl_5284523690.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 695KB - Virtual size: 695KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ