4bee42aeb614b9029f7088e4cc3ce2f9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4bee42aeb614b9029f7088e4cc3ce2f9_JaffaCakes118
Size

298KB
MD5

4bee42aeb614b9029f7088e4cc3ce2f9
SHA1

8d5e1791af7043322d1d395f82fee83dc2f731f1
SHA256

1421ac54b55870ed7de85a3e6630e0404f6fc679696f4f0cd957722123adaab2
SHA512

d25ed6c858da6e962b2d754711c86a147f85e05737be451591f83c25ac46a9d74b47878f02544207233e14b1dd6a89ff782c47cbc85a424669cd403e50d6efa5
SSDEEP

6144:bBUrqA3AheuswyPn8zQoR7Yx7j2GTx0juUrqA3AheuswyPn8zbYnA9:dUWA3AheuswygQnWGLUWA3Aheuswyg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4bee42aeb614b9029f7088e4cc3ce2f9_JaffaCakes118

Files

4bee42aeb614b9029f7088e4cc3ce2f9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\MPlugin\Installer\obj\x86\Release\MUpdates.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 295KB - Virtual size: 294KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ