49bec5540792c8d104b221c61f59eca9_JaffaCakes118 | Triage

Sharing

General

Target

49bec5540792c8d104b221c61f59eca9_JaffaCakes118
Size

140KB
MD5

49bec5540792c8d104b221c61f59eca9
SHA1

d7162b6deae4be6baea62b7f2111bf4d7f587bc5
SHA256

3653093e2149ab9e0bec8659ff7efd5625173ad63e90bebf4b1b9a4bb7c80f39
SHA512

090ba8cf28ebb97c67809d4545611472f7fac161bd5810135ba30b2467f9efc6c8219f4348633dd15e220564569e8055a7c486a3a5a2be05cd7f07e33eb786ee
SSDEEP

3072:aPnMMF3mKLyD2c5NvvH9H2r6BhraivprqU07F51:ObRe6cXpAivpmU0n1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49bec5540792c8d104b221c61f59eca9_JaffaCakes118

Files

49bec5540792c8d104b221c61f59eca9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 44KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 86KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE