49455fab1ea7684767e004d5db1f91f4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49455fab1ea7684767e004d5db1f91f4_JaffaCakes118
Size

32KB
MD5

49455fab1ea7684767e004d5db1f91f4
SHA1

299f8b1764fc61f2721a1a6b3c3072b0703c3696
SHA256

681a639fbab22f9030769ecd8d8d716ce4f8cfc01b6f1a2f3ef8722a97cacee7
SHA512

a54599a1b03cb355cf19eacc2a15e0343a6972b32b36a2c260c9213906ad0c2b5870dafa7f2b48caaa598adb9896cdaa5586c41fa549f4247bb436eaad50286d
SSDEEP

384:zo9muSVQ/iC/VmG2SSik+hJGQCna2rA94/jxTihvq/fO:9MmnSSehRCo4MqW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49455fab1ea7684767e004d5db1f91f4_JaffaCakes118

Files

49455fab1ea7684767e004d5db1f91f4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ