476763fde3b5210eb4ad8f24327ecad1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

476763fde3b5210eb4ad8f24327ecad1_JaffaCakes118
Size

102KB
MD5

476763fde3b5210eb4ad8f24327ecad1
SHA1

1a0171c6ca75416c1664d3a3443578a61c200f77
SHA256

299012d19aedefadd472b628079bbed6fc102ba80592aeebe2f60a0d73dbbca1
SHA512

c6c79d16677ed05b8b775bb7f5c1d1d9617d8239e3aa981e935854cb49a1d307c4b78f788e3ab34c7dcdb4c2d6971c3b25a655d6da160a2ac86f6efcac92cc9f
SSDEEP

3072:T8TsBhmcDL7UHYNpguxXfL72ftvjwGaADv:F7UH69L6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
476763fde3b5210eb4ad8f24327ecad1_JaffaCakes118

Files

476763fde3b5210eb4ad8f24327ecad1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\test1\Downloads\Nonsense Diamond\JailbreakDestroyer\obj\Release\Nonsense Diamond.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ