JaffaCakes118_95386352ce2036d3f685512bd70327ff | Triage

Sharing

General

Target

JaffaCakes118_95386352ce2036d3f685512bd70327ff
Size

833KB
MD5

95386352ce2036d3f685512bd70327ff
SHA1

167459c4518f6ec214f0b67f821574f1394435fb
SHA256

f2ae44a2f71f141aa0bcf68525a62c53b39de8bcf678335d7fd32fd8a6cf8495
SHA512

893ed89f6cf5961f85e4921a98f4f2dd912620a5520b16674e0b48f51e22c8fc9411aab7e26e0ceb7b97ef4eb4a1aa293534731943a51100cd71be5ae450eff7
SSDEEP

12288:uU1KRUi2iNmZQcdYI3Nj2G6RTWGlIl4Um0rQ:uU1gUi10l2WCIl4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_95386352ce2036d3f685512bd70327ff

Files

JaffaCakes118_95386352ce2036d3f685512bd70327ff
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 468KB - Virtual size: 468KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 363KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ