476685585a87796ce12457542e0b3890_JaffaCakes118 | Triage

Sharing

General

Target

476685585a87796ce12457542e0b3890_JaffaCakes118
Size

721KB
MD5

476685585a87796ce12457542e0b3890
SHA1

187e8de69732dc9486ce90fe71d7f4fc67b1396f
SHA256

4bf7948e3348a34dc17bbda6a422cb0ac119c177a659aeae420f7c82ef41ffd6
SHA512

4f70e68c01d1aaae422d99759d9af36174ad4c55d1ec7887f93f9dd4d8e89231632b471b5a4ddcbe6a660dcebd7d87a717ecee5ac2303344dea13312c5547efc
SSDEEP

12288:hB6PtYaerRu7geZXC505DCP9y18vp1XincZtYaer:hUMrRs8505Qe8v3XiDr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
476685585a87796ce12457542e0b3890_JaffaCakes118

Files

476685585a87796ce12457542e0b3890_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 573KB - Virtual size: 573KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 147KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ