01edae7572bd3dcad70155d3b988f63b_JaffaCakes118 | Triage

Sharing

General

Target

01edae7572bd3dcad70155d3b988f63b_JaffaCakes118
Size

258KB
MD5

01edae7572bd3dcad70155d3b988f63b
SHA1

54535c80179fad6b92ee7d1378a5865c4c3b3999
SHA256

3cf9356a4b252073db553cfc05544213078ba8ede54eaa45ab83637d86fdd948
SHA512

f7cb116243da0563f7e4e3cfa73cf6106738bf5e1d9b6a15af615ad284dc8963061889c1ae99a2b4a382e0179b88e32b435683db40559e2f490ec96cd035e0d3
SSDEEP

6144:d1ZIA0NUuoAzOgv19kwnG+XnRabukHQWpHpshHwipISW:d1+RNUE9kwnGqR/kwsJ5SW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01edae7572bd3dcad70155d3b988f63b_JaffaCakes118

Files

01edae7572bd3dcad70155d3b988f63b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 189KB - Virtual size: 189KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ