JaffaCakes118_65c84a143ebe579a56d16b9628e042ea | Triage

Sharing

General

Target

JaffaCakes118_65c84a143ebe579a56d16b9628e042ea
Size

395KB
MD5

65c84a143ebe579a56d16b9628e042ea
SHA1

ce988611870cdabd04fba38176555ca4815ffd4e
SHA256

ed84a6cb70969bc490e4b72bd028652cde787dcda41b5cfa7ed18ed7f592b9eb
SHA512

62c16119c5aceac7859fd9d9fadd19535319f73b1dd1f0169b715471a51d2b65238fe161f438241e00f63e9540610596937d06dd057460751b7e61cc4af4f18d
SSDEEP

6144:hsonJH5wognja6Uqd2GhNBSgDh0kBE7woo3eDYCFwdjLvgSHKAm9:PHgjUi2iNtDuk67ZPDfFwdLvhM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_65c84a143ebe579a56d16b9628e042ea

Files

JaffaCakes118_65c84a143ebe579a56d16b9628e042ea
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 392KB - Virtual size: 392KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ