170fefd578f771d957d75c4f1fd45833_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

170fefd578f771d957d75c4f1fd45833_JaffaCakes118
Size

285KB
MD5

170fefd578f771d957d75c4f1fd45833
SHA1

dcc25f1fe59692ab3f5c5bd909c34ad905b91724
SHA256

72ec61bf3214c63ea6bfff1abfdd416cf99a9cb053b509697b7e4f386436e7d5
SHA512

137e6ab805408347aff694aceabcabfdddadc602fa718a04366eec75c7a92dd713bec7eebf2ce100f91817f88ab761b158aa89d1fb9d7eb02fcaea166c17d193
SSDEEP

3072:tSD2MSO1ld9fD2BR7BOYEGjpKSeLfCYNb47u+aCXLrolmfHRj3jANvUoYfXjTizh:tqbd941OYbFeLnb1CE1FL4mE1c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
170fefd578f771d957d75c4f1fd45833_JaffaCakes118

Files

170fefd578f771d957d75c4f1fd45833_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Entwicklung\attRiBut\Release\Sonstige\KPfWClient\obj\x86\Release\KPfWClient.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 275KB - Virtual size: 275KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ