4c604f50b6d37fdeedc025de0261623e_JaffaCakes118 | Triage

Sharing

General

Target

4c604f50b6d37fdeedc025de0261623e_JaffaCakes118
Size

190KB
MD5

4c604f50b6d37fdeedc025de0261623e
SHA1

5a7d0ce255846022b60f9cd922171c2386bb7428
SHA256

b9061c09fd13b3ccc9784dfad52634a476deb606fd008bcadbdf500e5c082abd
SHA512

edadcc4487e428aadeacaf396886ec3846cfa4b72f6faf11add14aaa8e96d242453495d82cd85668c078c8c0095da915ca2839624e7c9032e6748168cd76dd89
SSDEEP

3072:Fx+V+/f3Sw9PGGSpat/MdIdQi/7fUC7h4j9kyi5G9zK/DS5:Fx+k/f3VoBpi/7Hej9kyi5GzK/Da

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c604f50b6d37fdeedc025de0261623e_JaffaCakes118

Files

4c604f50b6d37fdeedc025de0261623e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

865ba162715fa3259fc1b47fa808439e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
SetUnhandledExceptionFilter

msvcrt

_cexit
_fileno
_fmode
_fpreset
_iob
_setmode
__getmainargs
atexit
__p__environ
signal
__set_app_type

shell32

ShellExecuteA

Sections

.text
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.stab
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.stabstr
Size: 153KB - Virtual size: 152KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ