403af7833c583f8c40d6f861f7c8c1f2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

403af7833c583f8c40d6f861f7c8c1f2_JaffaCakes118
Size

47KB
MD5

403af7833c583f8c40d6f861f7c8c1f2
SHA1

79792a070af930d74d1a0e3ffd5614f181210ae3
SHA256

5d86b9ca9a547f0093b386b5745943c5a78031c4f07d4a8fce24802b0ea15459
SHA512

0135e535ad687cdbd279544d28621f9811031ca617ae12e718981d9a96148d63620b139c8272c4a62d3ca9cb1b1e145ae914d818a1ec078498284efef93d0da0
SSDEEP

768:jgKpgdnSTMMaj6zSTzd1AX12cTTC68NNjUc5DTmdN/8+W4zwtjtgmh1fjVGzHeRZ:jgAgqCT6MTOmf1pJ2HbVZ1+Yw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
403af7833c583f8c40d6f861f7c8c1f2_JaffaCakes118

Files

403af7833c583f8c40d6f861f7c8c1f2_JaffaCakes118
.exe .js windows:4 windows x86 arch:x86 polyglot

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\shawn\Downloads\AG3-master\AG3-master\AnarchyGrabber3\obj\Debug\AG3.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ