JaffaCakes118_65707c3a420e0caac14e48a8353c2d70 | Triage

Sharing

General

Target

JaffaCakes118_65707c3a420e0caac14e48a8353c2d70
Size

635KB
MD5

65707c3a420e0caac14e48a8353c2d70
SHA1

9614bfe12d334e260da4e2d00f2185f34826fb46
SHA256

fbd0ac1d27ac37fad26a02989094f3d3351a2594dcef85180fba37e686df6dc7
SHA512

554c4d30824abd186811429a5c1ce90e219805792e1eb07c7b66255c6a24c91329c61bb28b8d7f812a5136f812f91e85165f7d51d96f0a152942f1527fe1d3db
SSDEEP

12288:mEYdefCHe8N5avZIVEax7JhYKN0Aw6T0UkA5mfLif:mEYcfC+8N5JVRJh5y20mmfLE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_65707c3a420e0caac14e48a8353c2d70

Files

JaffaCakes118_65707c3a420e0caac14e48a8353c2d70
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

I love you Dz.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 328KB - Virtual size: 327KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ