bf23736194158362c62bc047048ce57c_JaffaCakes118 | Triage

Sharing

General

Target

bf23736194158362c62bc047048ce57c_JaffaCakes118
Size

897KB
MD5

bf23736194158362c62bc047048ce57c
SHA1

32ad8a5d770e4129a0efa9451567f6d983a85ff3
SHA256

b827c6078ad83c5838d299a2fc09fef12b4a3a6874b9ba68ece83eb8d287c1a9
SHA512

415265a60065e422700bbc3ed3fd7a60992bb66268487b0e1096ad4240d1179b283a49f309c77e834215bd5e5118175ae3f5cac0f1fb6432115fc420d89a178a
SSDEEP

24576:6qW2DPTtPlTlWgT6uDcUrVR4l4ov5e0RNO:6cTtPLFTHkjnRU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bf23736194158362c62bc047048ce57c_JaffaCakes118

Files

bf23736194158362c62bc047048ce57c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 148KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ