4942d24da93e64503cf1bc4dbce2451c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4942d24da93e64503cf1bc4dbce2451c_JaffaCakes118
Size

405KB
MD5

4942d24da93e64503cf1bc4dbce2451c
SHA1

794ce1a328491e9057658575cf4048c32b557f97
SHA256

31b5454043bac0cfda143852ec2c11e0568a58672037280c1e97683017877865
SHA512

4f37c632403f7dd3356470ed051eaed0f91b1965760cff28ff0f682cf6364a1b309b0fc23f32c48b0f6e7fcd942b09873a61173985f203246659f8de6fa4c425
SSDEEP

12288:s5ED678GCkpEK4nwsmDODZlEw2pSRCQg:sSD6P8w5uZlP2pSd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4942d24da93e64503cf1bc4dbce2451c_JaffaCakes118

Files

4942d24da93e64503cf1bc4dbce2451c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 402KB - Virtual size: 401KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ