36ab8a9c16ced97d12b5b75293b4badf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36ab8a9c16ced97d12b5b75293b4badf_JaffaCakes118
Size

418KB
MD5

36ab8a9c16ced97d12b5b75293b4badf
SHA1

e68d169da5d8c8c2849c23a2f049b1efdbc188bb
SHA256

e9d2b4ecf08f4c8c1d487b11ad7ebbb40ecd74d2239964825d98128fab1522ae
SHA512

4ab08ca61399dfae99a26e23cff093ed490b012cc6e25e382583c33ccf72457be626fe0c83d2aaa613466f68fe9b6cb755d498f369842c0576f1436dcff0bb2f
SSDEEP

6144:D8cQrHB7EYry1xvBMILvA9d8JjYQbGVjCqpMaggeOxgb:D8HHBEb2ko9+YQSbw1Ou

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36ab8a9c16ced97d12b5b75293b4badf_JaffaCakes118

Files

36ab8a9c16ced97d12b5b75293b4badf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 267KB - Virtual size: 266KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ