28e531f2169a252d935a977c3be94847_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28e531f2169a252d935a977c3be94847_JaffaCakes118
Size

103KB
MD5

28e531f2169a252d935a977c3be94847
SHA1

db85a83d96b3313a0c8c7365b663cfd14f7c152d
SHA256

294818fb44ac377a41e1e2c9605d92fffcaadc48bbbb9b90fafb57c6742eae4e
SHA512

13a1c32ee9a3cf0c37afd40b12f74d93d43fd171f57de165b1e8dd4871fa079166efdc6126c21078a2e167c8a073adfa5ad8216020c550b6571d8e49d1a55e56
SSDEEP

1536:4ah2P7DBdvatljpS0Cy74CT3TrYz6vDpMQ43+41xPNfadV:4ah2P7bvaXFS0h0CTXYmvFMQ4b1LfU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28e531f2169a252d935a977c3be94847_JaffaCakes118

Files

28e531f2169a252d935a977c3be94847_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Documents_.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ