fb281939af3b2e1948f15015a8d797dc_JaffaCakes118 | Triage

Sharing

General

Target

fb281939af3b2e1948f15015a8d797dc_JaffaCakes118
Size

334KB
MD5

fb281939af3b2e1948f15015a8d797dc
SHA1

f3b2ef76164669d616f6028706c8a0c996968aee
SHA256

db9bf417aaad1442694ac2057761c8c9ada4626f41dc969dc21268f4e82664dd
SHA512

46fa4521a9718ffe17e697040ad840554390c8d59f5539274eff8fe8fe7e91bdc4971c5e6d377b7746441f2e7a8218b19748a985978f767d0cf4845a140e7dd5
SSDEEP

6144:hJixtAiIYeUH03emCOv8XmTjkLm8nfsxF7wjimTEY2:h03gYeUUt82vkLnfOOim4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb281939af3b2e1948f15015a8d797dc_JaffaCakes118

Files

fb281939af3b2e1948f15015a8d797dc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 331KB - Virtual size: 330KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ