74826e91cc6aff8d0bbf072ce156ca79_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74826e91cc6aff8d0bbf072ce156ca79_JaffaCakes118
Size

253KB
MD5

74826e91cc6aff8d0bbf072ce156ca79
SHA1

e9f56485953f5c9a83bc19615f2e49f0fb474d3f
SHA256

dd735866d4685fb6dcf9b0b3cbe45c9d961b4a2490f5e4fc33425f034010ddd5
SHA512

29d77a5174e3be5abd5fbebeec05e0be8cf21f5469050a567d2151127d9fb11713fb8d5743474fe05a45d0fb51267df4cdbaaff6888c2c56382a38b06b49d3d5
SSDEEP

6144:Nq3efLYcN/Z3qXMyoyysXEXhnicbsA2P1nFfG:NkAs2/ZwBysUXhnFjm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74826e91cc6aff8d0bbf072ce156ca79_JaffaCakes118

Files

74826e91cc6aff8d0bbf072ce156ca79_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 188KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ