4b9a14ceed3b2a8ec13bb210d6c9aa32_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4b9a14ceed3b2a8ec13bb210d6c9aa32_JaffaCakes118
Size

146KB
MD5

4b9a14ceed3b2a8ec13bb210d6c9aa32
SHA1

806a4c005ca45180328fc7cd6e7b5a019f0e34ed
SHA256

32ca83ea76bba009a6f402fccc88e5876df7a8b2a13cbef28231c718f85f9355
SHA512

1ad03167c2e32f3fad95bb384b392fafcbf1e5ce69bdf546e2531e16098830af7369a2cf15e01135f6d3f514b49e57cf520e62cabd12ed5a3069bfb6cee68f3e
SSDEEP

3072:UaFP0mTuhOQRCO+zMK09zGUt/rQ7Ud/EJy4f1:U28mToPWqtt/M7dE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4b9a14ceed3b2a8ec13bb210d6c9aa32_JaffaCakes118

Files

4b9a14ceed3b2a8ec13bb210d6c9aa32_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ