444373e9e0c9df33527a44058b45d6b6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

444373e9e0c9df33527a44058b45d6b6_JaffaCakes118
Size

167KB
MD5

444373e9e0c9df33527a44058b45d6b6
SHA1

6d9030dfc7c4256b64498745d7d52df92df6f378
SHA256

46d9d880283679922057af3bcd4642d49d54c88d45f51db9a498fca327d764f9
SHA512

6d1478744290c976c3fd3b515261b723d677259b1c90ca4584960899647c75ebd1ceaa4bf9857719a5aa85c59b25250dcc8aa7b116a908bb678dcb829783b442
SSDEEP

3072:O64v4b1mFNMUjS2rXV+ExN60sgSVRlfJvWsA4v4b1mF2:O64v4b1m3M+l+UN60sJRi4v4b1m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
444373e9e0c9df33527a44058b45d6b6_JaffaCakes118

Files

444373e9e0c9df33527a44058b45d6b6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.textxc
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ