JaffaCakes118_089fd8527a9faa391ed5474898f9f391 | Triage

Sharing

General

Target

JaffaCakes118_089fd8527a9faa391ed5474898f9f391
Size

312KB
MD5

089fd8527a9faa391ed5474898f9f391
SHA1

279248367b61c92fdd599d002e84420dec9ecd60
SHA256

ada04b9d9b0611f4ee1ec1055647af989b2b30dc41e84b75be1bd479a16ea7dd
SHA512

1d93cfa36b628ae904bc8ffb641383302d603c6579ab0395b4b9ec87cba00299425cdfb57de4d90673d5e97468075e1c155e38915d0040ce9726f7cba07d0f75
SSDEEP

6144:/BgBBVJcHcKnTDWnc35dAlvWvj76vko6Rqwl1jXE:/acHcKnTDWnc35Qevyvuqa1jXE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_089fd8527a9faa391ed5474898f9f391

Files

JaffaCakes118_089fd8527a9faa391ed5474898f9f391
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

\DI|d(Q
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 241KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ