f9087855b44b5b45d88aa897c3b3e12a_JaffaCakes118 | Triage

Sharing

General

Target

f9087855b44b5b45d88aa897c3b3e12a_JaffaCakes118
Size

531KB
MD5

f9087855b44b5b45d88aa897c3b3e12a
SHA1

f1b79eb99ca3f6f2a46c048d8dd521621027a42d
SHA256

44a14155e39f625261ae9a6dc74ee56d706f6109433060755a40f65234641046
SHA512

a50a760a84075f9612a0977b76ca39a0d93541f3f4a2474db16f70852bce16f0a93ba5ee930f176e79d4d599468edd9b74e65adf0bb76d5fe996af722507108f
SSDEEP

12288:KUPkwlqghRK8nIGid0s1Me9p691EAWRrxOXnlq1eeiaDk3DKm5ha:KwPYghnIGiysKuph4qidm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/tt copy 009921.exe

Files

f9087855b44b5b45d88aa897c3b3e12a_JaffaCakes118
.zip
tt copy 009921.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 989KB - Virtual size: 988KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ