03344923f4c7f9ba0d5f1edbb97c2ad7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03344923f4c7f9ba0d5f1edbb97c2ad7_JaffaCakes118
Size

1.0MB
MD5

03344923f4c7f9ba0d5f1edbb97c2ad7
SHA1

c9832e72ec0e3014502f12360ce9e339918e90c3
SHA256

94e4b0d426df9f8ade70e7b1fa5054befb1b938660cd23ffc832af1283dcbeb2
SHA512

3ce8f6d1a664d168b41df85db54896194b499e35fbfe8dd436b45bbedb73c5e67dd4051e1cd284c873056375b6258e6ca39701b501d69b915deb1f707125865a
SSDEEP

12288:TTaMLVIcdzQKPQ1gxSL2P3RFaEYONp3WdSX+01zRuxj37Mda/ipOQjCdO2CWYqN5:TBLeIzQ+Q1gxvFaKvGcO01zR4MdajvJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03344923f4c7f9ba0d5f1edbb97c2ad7_JaffaCakes118

Files

03344923f4c7f9ba0d5f1edbb97c2ad7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 870KB - Virtual size: 870KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ