JaffaCakes118_65208a5011448ac71d29c0bebaa77649 | Triage

Sharing

General

Target

JaffaCakes118_65208a5011448ac71d29c0bebaa77649
Size

253KB
MD5

65208a5011448ac71d29c0bebaa77649
SHA1

0ffdbefccb03b3f0040ac5b5342e4d56978fc3dd
SHA256

33fc5b4d4ff148dd1db1589a84650daa0e7ed1897dd665ca40c2f2377f98040f
SHA512

66bf47fa0eaec0fc20912bcf049b66f95c802f7e6e8a0da2742edced4899dd80374961b850a86c3f80d80ee6fefdb854ee3197958e3ee6ebd3a812483dd34c2f
SSDEEP

6144:47YzAavnMka2Ob9ITkBW4uZVsLQEYjVQu:9HvntaN9eSuZVJjVQu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_65208a5011448ac71d29c0bebaa77649

Files

JaffaCakes118_65208a5011448ac71d29c0bebaa77649
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 250KB - Virtual size: 249KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ