47924aa222a951ebef5a8c5849648c76_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

47924aa222a951ebef5a8c5849648c76_JaffaCakes118
Size

71KB
MD5

47924aa222a951ebef5a8c5849648c76
SHA1

cdf5d2048e42427c7d9eea04ddedb95d5a48fb66
SHA256

44e2eeface24c9ca698bd9f4590df2c31a685be73e396076352e9ea3b9fea62b
SHA512

26f749d5089f99a27da920d537488fa06b3a5471cb5ead2163aa04fd1091e5442d7716cab8263e9799a452a704ec31d4a836e3a8b42050f7d8a408918e10ee88
SSDEEP

768:uoSY6Xt7ZKe8FfIhRmjm8AluxrpoUGuV0XiZ9PZYHJDXB2/NaD8Z:O/70e8FGIihSPZ+921au

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47924aa222a951ebef5a8c5849648c76_JaffaCakes118

Files

47924aa222a951ebef5a8c5849648c76_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.sdata
Size: 512B - Virtual size: 119B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textxc
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ