4d4da072d6f0c0f4afb5b918afde6966_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4d4da072d6f0c0f4afb5b918afde6966_JaffaCakes118
Size

763KB
MD5

4d4da072d6f0c0f4afb5b918afde6966
SHA1

8bbf6251bbc08deef4871f95a79341e7f3bf4e9e
SHA256

198ddebf4dc800f662915a5d40403580a46b7253f0297e389702e88716618e35
SHA512

dab4c7b48f91d3740e9f444773599f6f86e0909955156cc1a080d2c239c75ae295cbdaf3703a04e6434ff100ec531a8b0a5850c55e7c2372bf6ab42561a1294b
SSDEEP

1536:SRHKUPLDNnZJenEMukimadZLzDDROKcl:SZKUPLDNZJeEMukuzDDR9Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d4da072d6f0c0f4afb5b918afde6966_JaffaCakes118

Files

4d4da072d6f0c0f4afb5b918afde6966_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\nagat\OneDrive\Documents\Workspace\Wizzlabs\Windows\Windowsscreemanager-windows\WindowsScreenManagerInstaller\WindowsScreenManagerInstaller\obj\Release\WindowsScreenManagerInstaller.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 396KB - Virtual size: 395KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 366KB - Virtual size: 366KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ