317938f86c4a43ea1ac3ff554cef0e4a_JaffaCakes118 | Triage

Sharing

General

Target

317938f86c4a43ea1ac3ff554cef0e4a_JaffaCakes118
Size

682KB
MD5

317938f86c4a43ea1ac3ff554cef0e4a
SHA1

d90d88ee1c574ad2e724f387efa64a35782a8237
SHA256

e576b404e4636f91a72e7da798095406a813c93012f5ee3caa5d48edc3347c82
SHA512

0f3f71d13ce84380cd35be3d787f9a3f6c476d2ae91088ad91612e93e67aa4343ce9fe1d36e83d8ead09e6131b366a69b5e4d9be87627cddaca90b6538b8c499
SSDEEP

12288:nw0NwkGGjNSegGdN+4onQeuYpU0dzoi1jeCV/FLvBg:nN17jMnGdNgpL5oI9V/Nv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
317938f86c4a43ea1ac3ff554cef0e4a_JaffaCakes118

Files

317938f86c4a43ea1ac3ff554cef0e4a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 545KB - Virtual size: 544KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ