ebeedfdfbf132d41c062e097ba3bc595_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ebeedfdfbf132d41c062e097ba3bc595_JaffaCakes118
Size

234KB
MD5

ebeedfdfbf132d41c062e097ba3bc595
SHA1

6b4c875c4e551d7c8487348ab146fa8f026ae9b8
SHA256

21772166d4a45d0ad4ddbe6fb7554c4045d1fa8d8543aef2b26b63540a8f446d
SHA512

0245b5e28e7ee0cfba109e427a969cb1fb2a7cb734fb6d5a22076069e1f25d174197b1043c836134b61362fc2fb5c7bcfe46e8f2e80d618a70afc052b95de3b4
SSDEEP

1536:vKQMejGT79wfMQIbPlJn77ZAn0tV9F4GBuwGF4GBuwCdXaNfurt6sshVIF:FOuIbPlHmmqGEqGkdXaNfurYh+F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ebeedfdfbf132d41c062e097ba3bc595_JaffaCakes118

Files

ebeedfdfbf132d41c062e097ba3bc595_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\TRV_OUV\Pr_ACTION\VisualStudio_PROG\Stabilo\Stabilo\obj\Debug\Stabilo.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ