d049b04886d2b1303e9a0a2b44c349c9_JaffaCakes118 | Triage

Sharing

General

Target

d049b04886d2b1303e9a0a2b44c349c9_JaffaCakes118
Size

187KB
MD5

d049b04886d2b1303e9a0a2b44c349c9
SHA1

498d704f71d0667237f33c809aa6569db9988db1
SHA256

73d8481d8372b0a256b312da3fa75b30144269e229b134dc5d0249d7351e788e
SHA512

2473d22dee4c49419dc2d0d4d79d07676a7a1c129458881519083803048a3177f5f0058c4a02ec17c45f2a64c6003e76f6f5ab44a67c438e7144fd0ed761460a
SSDEEP

3072:UWvdM92C22IcW9CxNaLjKR0MuqNDcwDWM8nbKlZd27qb3g:bxHL20MZNTWMASZBQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d049b04886d2b1303e9a0a2b44c349c9_JaffaCakes118

Files

d049b04886d2b1303e9a0a2b44c349c9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.rsrc
Size: 1024B - Virtual size: 656B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 185KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ