fbf95f9700b94f67c24a7bb974e963e1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fbf95f9700b94f67c24a7bb974e963e1_JaffaCakes118
Size

140KB
MD5

fbf95f9700b94f67c24a7bb974e963e1
SHA1

86ba23882adc6b5efef6cd85dc59297932edde73
SHA256

186b117ab69206de33b4a16cfe06430fc2840ab3d54c03ea20f74c6fdb6253b2
SHA512

d534e15eb316073ec542a70f0836af30f47b6a8edc6f2e48cc07d725ee7e71ca4694b990a37ab9c0fdbf28e7877fba3e6bbbe3580c2e8c5dc1ab2d9ce11309cc
SSDEEP

3072:/1LAFpJbRZS8VhsnDn0WE+RQrRg8CcMvwcxEi70Go10MMStc9yL:/ybc4snQxb6d0jG9ucs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbf95f9700b94f67c24a7bb974e963e1_JaffaCakes118

Files

fbf95f9700b94f67c24a7bb974e963e1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 128KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ