JaffaCakes118_1cadb40bb61186f2e85313c1e96572d7 | Triage

Sharing

General

Target

JaffaCakes118_1cadb40bb61186f2e85313c1e96572d7
Size

1.1MB
MD5

1cadb40bb61186f2e85313c1e96572d7
SHA1

2feebaaeffb1114f1c630139f5466b937951d17f
SHA256

de3665405a74bd3fd308b8831d55d8b86cd00f81126333de8dfdb9b26bc9fe4e
SHA512

e473b4d743072e77dc5e6ecd7bae9d51fe4cfdeb2a58fc24bbd834e9e6485dc5d4259d1530301169b8bb4e8e5ee1bcaaa141339fc43827bf2fe92ceec5c272cb
SSDEEP

24576:OvRkla+ipDfHGpY+7oY6A+mgzbGBUR39h/ii:2RSI/qTP6AOfTR39h/ii

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_1cadb40bb61186f2e85313c1e96572d7

Files

JaffaCakes118_1cadb40bb61186f2e85313c1e96572d7
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Users\Sully\Desktop\FUD.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 694KB - Virtual size: 693KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 463KB - Virtual size: 462KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ