09bdbc168d9abae4d20d2ca532dacb20_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09bdbc168d9abae4d20d2ca532dacb20_JaffaCakes118
Size

43KB
MD5

09bdbc168d9abae4d20d2ca532dacb20
SHA1

fc4484e3b463e5adaed6917803509962b0fa3d03
SHA256

0777d8f4a89bb652591fe68783a60d35d5dbc9a5f0578311e044fc71684eb685
SHA512

2696c658578c67f7e0bd0c14107c2a431190ab5d61c9dd1b0c350c28e088a671ae686e3db169f691a9b77c01a1d5ea9a2ba720e53693bb2187d80b528a524b07
SSDEEP

768:2T7KY4t8PbtwajNGO0lHuygR+ZpgB+Svt9kEB:K7KY4ePO6L5BNvjB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09bdbc168d9abae4d20d2ca532dacb20_JaffaCakes118

Files

09bdbc168d9abae4d20d2ca532dacb20_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ