4226c146c14d41c19b826f12781f94ab_JaffaCakes118 | Triage

Sharing

General

Target

4226c146c14d41c19b826f12781f94ab_JaffaCakes118
Size

300KB
MD5

4226c146c14d41c19b826f12781f94ab
SHA1

ae26d3fc47c4204693fea765b82131e6ac53d5ae
SHA256

6b7773442040ba2370dae7eb40d6ea58d29c90d5679bd2abd4e3c5a42b537ad5
SHA512

82dfa721e62a798959e5f5b6accae81b5a4703d16c68df96901ba72b897c8e47d007874ee3869122c10ed0ecfa96b661b65dd27cc59360e6d4cc2b1c17a39b8d
SSDEEP

6144:MrFvMP8y9ynLksCNtMNzAbOKqExrt4/CUme2kHhzfGch9MQSV+n:MrtVy9ynLkezAOENm/CDkBzfGU6In

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4226c146c14d41c19b826f12781f94ab_JaffaCakes118

Files

4226c146c14d41c19b826f12781f94ab_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 288KB - Virtual size: 286KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ