49b5c0bfb99255e89193a89b74cb4606_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49b5c0bfb99255e89193a89b74cb4606_JaffaCakes118
Size

3KB
MD5

49b5c0bfb99255e89193a89b74cb4606
SHA1

6d46d87cf635ba89832ed988a5f764bec7912291
SHA256

b590422119bf914f23add4a2c33a53acc68edc3f6b64982668c2b6c2548d81a8
SHA512

e763320433111d5f5f6be954d51b5a18020fb6e347486a0765f29c2cb2f21f6a5c4caf825617a8fc3f34f01b9fb522debf90e77f3396408eb8bb040f7b1cc06b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49b5c0bfb99255e89193a89b74cb4606_JaffaCakes118

Files

49b5c0bfb99255e89193a89b74cb4606_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

tmpC356.tmp.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ