44b89467a887fa7a0bd130b35a486f2b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44b89467a887fa7a0bd130b35a486f2b_JaffaCakes118
Size

219KB
MD5

44b89467a887fa7a0bd130b35a486f2b
SHA1

3ed7af3ca313bc48f7d87bcce5a65381fb86f1bf
SHA256

d19b8574a53b4b03294f7297ae1f1bc98f7d49df47a2ffb6fd1efd0dad8bd862
SHA512

a1e524f620365baa9d23b7f444b232e3283c6a8d3443ab191b77003da58db0918cda8a1fe21d243524c16d294d8c4521a99c1f4e0bcae505abd3fb079c173f40
SSDEEP

6144:SeOp55zOxcp3jbt/u3ypLsOkxNxlP4RVXjg+:67cu33tWkLlkLXP4Rhc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44b89467a887fa7a0bd130b35a486f2b_JaffaCakes118

Files

44b89467a887fa7a0bd130b35a486f2b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Imports

mscoree

_CorExeMain

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 149B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ