030b1547345573bd85d65a436e0d4e95_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

030b1547345573bd85d65a436e0d4e95_JaffaCakes118
Size

490KB
MD5

030b1547345573bd85d65a436e0d4e95
SHA1

692efcd0853b544f1f94eefeadde42625476754d
SHA256

2f15aef4cec370905c7c75c66c74026b8dd39f5a54e0500e55699b8c66d54add
SHA512

f07120034d575934da27f1018d16f1ee382a4cb1fa9128120b89e357abcb4b687c0eb6ccca5288d3e4447561c0b4979eca615ff9742223776d7a371863fb0f46
SSDEEP

12288:P6DY0fjvr+8f4KIV7nF8vWiLJJQB24tf6:P6pDq8f/2n+74R6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
030b1547345573bd85d65a436e0d4e95_JaffaCakes118

Files

030b1547345573bd85d65a436e0d4e95_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.rsrc
Size: 234KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 255KB - Virtual size: 255KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ