5d6504033e0108dd331c3514c9b92772_JaffaCakes118 | Triage

Sharing

General

Target

5d6504033e0108dd331c3514c9b92772_JaffaCakes118
Size

1.5MB
MD5

5d6504033e0108dd331c3514c9b92772
SHA1

94f3653d419813a95af7174937181321dbfa25f4
SHA256

3798eda97eb1c96e59e379d952389a01dd6e753563c367f4cad3673b0703b0b5
SHA512

3d8ebfd92055007eeb865b64482656d29ceda7d9cdfc0495c62bc0b3f481697dbf37873a11187838d6ff78c2fe4600cd0dbbbd3e110d8899875cdcecc53a2156
SSDEEP

24576:uQ1Rl5jC806M2DYTcSX1ZajRg//3uno46+DThVrMAY0wLQqd/tUTjFYaCtjZZwaG:u85jChzcJ1LGDWHahjfS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d6504033e0108dd331c3514c9b92772_JaffaCakes118

Files

5d6504033e0108dd331c3514c9b92772_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\xampp\htdocs\Aspire\files\zeenet_xZESOvbSMfEdDdRJ\xZESOvbSMfEdDdRJma.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ