3bf6056da07d440331a454b5c44e2702_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3bf6056da07d440331a454b5c44e2702_JaffaCakes118
Size

308KB
MD5

3bf6056da07d440331a454b5c44e2702
SHA1

429a870b97349042831fec7ea28f2525d0c5a827
SHA256

cb47efbc4cea2d454db83c7ee92e10b8a3e3dcb45c5d717c8ae312a2bd001289
SHA512

c9426e4c6df0b936b87f08ffef3416a7ccdb59db8e6112dbeadbbd922737f83f59c373d511dcbbc6c7a9c2835c2dd1246fc0c306c1f0377ad4337e8f3faf19ce
SSDEEP

6144:GBkewxa5seSJLSv19W4iDBpsq9Z1xjx/:Gh6e1v19W7DBpsu1z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bf6056da07d440331a454b5c44e2702_JaffaCakes118

Files

3bf6056da07d440331a454b5c44e2702_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\LavasoftBuilds\2\WebCompanion\WC-DEV-WC\src\WebCompanion\Installer\WebCompanionInstaller\obj\Release\WebCompanionInstaller.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 278KB - Virtual size: 278KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ