44e02c3ac1a3a2adb892991ebf6c043e_JaffaCakes118 | Triage

Sharing

General

Target

44e02c3ac1a3a2adb892991ebf6c043e_JaffaCakes118
Size

1.2MB
MD5

44e02c3ac1a3a2adb892991ebf6c043e
SHA1

77411acbd88aa8a1bad9bacff6bad9a9df132a62
SHA256

9499ef603f41fe1f60f928f3e51da8c052576ae05e958a4f592a9749f5a419ca
SHA512

65e9f2de03229b57ba01ff84b9afa696cbdf310fcad048f52b4c243aae3af06a256a8a7cf39c74e8f40d3b97ce6e4fd910e846f2c89c2b870f1483a0bf6ca4d2
SSDEEP

24576:mnejsuPH+3v2GSqSSiuBUYKRwLWWp5xzyec:ZouPH+3v2TKUYVCWp5xz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
44e02c3ac1a3a2adb892991ebf6c043e_JaffaCakes118

Files

44e02c3ac1a3a2adb892991ebf6c043e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 192KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ