fdeda0b1cec9ab9c2f5f6b8b10e8a08a_JaffaCakes118 | Triage

Sharing

General

Target

fdeda0b1cec9ab9c2f5f6b8b10e8a08a_JaffaCakes118
Size

1.8MB
MD5

fdeda0b1cec9ab9c2f5f6b8b10e8a08a
SHA1

1f842bf7af95dd172cb408e6561123adf43451ce
SHA256

f21e0b50c1d764720c940169a83e4331331113ce1a68fe7be541a47ab07e0a0c
SHA512

572d95b0266e903085049e84790b058ea469ca49535c8b525299c505dcc1c74bf77251139abb03ec70d4658ca352663665f5afcae31d4b6c10254e6468488532
SSDEEP

49152:bAOJkbSb8GNrom09Gjre1U9jaAd/3yd2OluON4fA9u:ISe1U9O6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fdeda0b1cec9ab9c2f5f6b8b10e8a08a_JaffaCakes118

Files

fdeda0b1cec9ab9c2f5f6b8b10e8a08a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 289KB - Virtual size: 289KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ