4c371d0b69e8cae29448211be21bb7b9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c371d0b69e8cae29448211be21bb7b9_JaffaCakes118
Size

192KB
MD5

4c371d0b69e8cae29448211be21bb7b9
SHA1

147626b3c115ad153a2a0386fbdb4d2f89ee231a
SHA256

79e8d14e5d46f84f6bae870dce06f4af6308ac6f7c14db5f1f9bb1cb4b4b3aa1
SHA512

db651b0961e6878bf3e6eabdec5bb1fd2cbd6519c68dd53438bc187982ebcaaf9c0250898bb96420e35d14b3ad27d1350d380187700a89335e7f540eb9220b20
SSDEEP

3072:bBzICFXzr6DL1geOmgyVkJfpZDCSDq44B/wFj2wuLs:ND6DLvOmgyVUp8n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c371d0b69e8cae29448211be21bb7b9_JaffaCakes118

Files

4c371d0b69e8cae29448211be21bb7b9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ