fa841e53f0fe99c8489b559c82b0994e_JaffaCakes118 | Triage

Sharing

General

Target

fa841e53f0fe99c8489b559c82b0994e_JaffaCakes118
Size

284KB
MD5

fa841e53f0fe99c8489b559c82b0994e
SHA1

1f83c7ea64b11077d1f6bb49a2d95b034a8b1c8e
SHA256

2b858a2fb21cb8b0fae98db24e50055d96966a4413c5aa692f74934d8f554743
SHA512

39701f0b77fb2368d7d71b765a60464de734919a7cf40ce9739d5ea92ed1fa4067982a34674cd5a7d340ba3c506671e0b3c191146415092b89ae6043ec246a84
SSDEEP

6144:qSvpcepsDoxcVbv0E6cr57kPfenKjqD/aknS:qoKepGocvxRt7Af3Kn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa841e53f0fe99c8489b559c82b0994e_JaffaCakes118

Files

fa841e53f0fe99c8489b559c82b0994e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 268KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ