e82ce9880fb2292af3c849a587124995_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e82ce9880fb2292af3c849a587124995_JaffaCakes118
Size

51KB
MD5

e82ce9880fb2292af3c849a587124995
SHA1

ba7dc800cc25f4e6307803f2c6ebf1a58ac03501
SHA256

806e367e9f8e6484efac344186c16a9e962a4332492ac1311730908a96cb4063
SHA512

b509d79cda802ae2333fc1640e70cf0b726f2019257d75de23e5be0b64f1abdda19da001754c7dc8dc96af2a48cdaef36706fa24200a0b3b58f4f559ffcc98d5
SSDEEP

768:tANGD0x6nRHmM17m2VsgI/LztH2MK195Pq93+/QQ/FpK6ao5daJRYDnvg:tANGD0x6nzTVHKzp2MK1L4MEoARYc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e82ce9880fb2292af3c849a587124995_JaffaCakes118

Files

e82ce9880fb2292af3c849a587124995_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

G:\SPRACHEN\VB.net\GCL-Programme\99\Download mit WebClient\obj\Debug\DownloadMitWebClient.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ