0a671fb50a13854abf7cdb354c915da6_JaffaCakes118 | Triage

Sharing

General

Target

0a671fb50a13854abf7cdb354c915da6_JaffaCakes118
Size

40KB
MD5

0a671fb50a13854abf7cdb354c915da6
SHA1

a3bd37b595e1e7187b01bf014a9ea28969955be3
SHA256

7f15563e3d4413c15e6a44735a6fb0a3e1c39c67d2ac69e0ef8c2b1f205affa0
SHA512

2376daf7d8a0ea6ac728810e012f0345f089f577a60f40b4f6762dbdba7e3066a8acf4abbb217123a6b9850616964b9086735900f8bdceb27c3548276731ce2a
SSDEEP

384:acY3EGud9rF64+wOJUA8CRYMXxxEQIBbLTB940eT0pqfAkOoAU:U0B7rF6uCRYqxxxIeOoAU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a671fb50a13854abf7cdb354c915da6_JaffaCakes118

Files

0a671fb50a13854abf7cdb354c915da6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ