dafd691464b16000b274d23ef7ad6023_JaffaCakes118 | Triage

Sharing

General

Target

dafd691464b16000b274d23ef7ad6023_JaffaCakes118
Size

420KB
MD5

dafd691464b16000b274d23ef7ad6023
SHA1

354ae9077928531efc9ad43d8c6b238fa0d9804c
SHA256

de93391586b49bc102a6e12e9556f3ae1994964fc4b394d28ee4591c483e9304
SHA512

6f4846c4130b292be515725d40c3c1affc72b2ebef89265d3f6f6d47c176d0dd69aaa7eb00ea12bb9e64eeafce2751c74d1448a5da57c53a6287fb9248b83d5c
SSDEEP

12288:TsYTDg2LZ0fNa+iO7eISOlJhKfG9G+cBLg:TsYTDdLZGa+iO7e1yJUfGlcq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dafd691464b16000b274d23ef7ad6023_JaffaCakes118

Files

dafd691464b16000b274d23ef7ad6023_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.TEXT
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 385KB - Virtual size: 385KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ