4f4c6c4cb9109512a00499b5bc9c0ad6_JaffaCakes118 | Triage

Sharing

General

Target

4f4c6c4cb9109512a00499b5bc9c0ad6_JaffaCakes118
Size

504KB
MD5

4f4c6c4cb9109512a00499b5bc9c0ad6
SHA1

6883af9089c4d757933118bbefb638d746f2d61e
SHA256

a4b157dbab29a77fbbf70ce88ef45b8a4f96c89cfe56cecc0d11d1b10d874609
SHA512

56f61a8f7883853c42ef0ec565c9b426c5c122610f39f3bae0ba54062c6f86a00d8dd2151d91574c87546b9a293aebb403c872a12a6cda6ad08736325cf7dcfe
SSDEEP

12288:v3/WV0K6JGoiD3zHiWaR7OFNP0E2PzpqX1nb:26JGoiD3zCfCFBZ2PzEX1nb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4f4c6c4cb9109512a00499b5bc9c0ad6_JaffaCakes118

Files

4f4c6c4cb9109512a00499b5bc9c0ad6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 501KB - Virtual size: 500KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ