fca470b7e3fa36f53a2be6f0415fb8b5_JaffaCakes118 | Triage

Sharing

General

Target

fca470b7e3fa36f53a2be6f0415fb8b5_JaffaCakes118
Size

289KB
MD5

fca470b7e3fa36f53a2be6f0415fb8b5
SHA1

c07e6c2ffc9ff99ce14532de4b912d5b2a1c7930
SHA256

a6c18aa37677f180eeec0556864c78fba8f7534a0417d7b0b0868f2aa82eb393
SHA512

ce62e3f882045c7f513f10fca883e4713445c0e19bcc757c7bc5104cd0fa8ba781c8afa9bd3dd7faa3d498c1f26657bbc2dae190ef79ee6c8a8d27303c0c241e
SSDEEP

6144:iESQgCIjfnv8TtEkXfqEwN4ExUBYs0w4f6OF:i9QgC0fnv8TCkmGIV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fca470b7e3fa36f53a2be6f0415fb8b5_JaffaCakes118

Files

fca470b7e3fa36f53a2be6f0415fb8b5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ