49114f15e3c3f9732bf14a6a58841cfa_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49114f15e3c3f9732bf14a6a58841cfa_JaffaCakes118
Size

6KB
MD5

49114f15e3c3f9732bf14a6a58841cfa
SHA1

610182a242cb850db6b2c9fd655ef69c00be1a01
SHA256

a67801e3afd02431cfcb3656cd16bfc4e1e7ddc4db8ea7737d7fd193d263a76d
SHA512

2f8269dc0fd3cf97b3c45fdd5de69ae7329f235eae77b9a9c5db84e775db4f6cf6d02825bde254012a00a5785c38d86e719c2a1db4b974d09ee46332744285f2
SSDEEP

96:7UDE7srqXy6g6rM2AsJsmCUrNasmDmDk9LcFVSHwvrRE+7E/1aLFRzNt:7Ze161P1CU5aADkJ+vXq2z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49114f15e3c3f9732bf14a6a58841cfa_JaffaCakes118

Files

49114f15e3c3f9732bf14a6a58841cfa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\IntegrationDev\provs\air2web\sms.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ