16beee96be34c7163bc3f641ba9ebdc6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16beee96be34c7163bc3f641ba9ebdc6_JaffaCakes118
Size

281KB
MD5

16beee96be34c7163bc3f641ba9ebdc6
SHA1

f36844a4bf8a855d4f509f82b548b0028eac8374
SHA256

f259881eb6358002e8de03fbee0c7fe78b1e5334c7ca704a50887bc29c4323fb
SHA512

b70823bd20e914f53e137989f0f5fe061fc0443f5c3f91a191ecb371d3dfb8caee5eb33f7fc1f8d150aa8da7ebc22160a654bab845f2bcefe891cc5f329baeb5
SSDEEP

6144:Uc0b2s20JSB65lhqOUhLtNZjwCLGGX3FABhyv8i0BWed:UHb2r0j5lgLYhyvMQW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16beee96be34c7163bc3f641ba9ebdc6_JaffaCakes118

Files

16beee96be34c7163bc3f641ba9ebdc6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.TEXT
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 246KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ