6ba618d03c1bcec1d12d73b95553a8c4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6ba618d03c1bcec1d12d73b95553a8c4_JaffaCakes118
Size

883KB
MD5

6ba618d03c1bcec1d12d73b95553a8c4
SHA1

32c1d139b71031685152043fdf2879143f9ed4ac
SHA256

c4170588bd15f843678865de98ae1789c0e9c8d1e848eef1b0716fc1c6e7b268
SHA512

35cf4252b865af154c25fbd6b905834fb32485e01fc166f2ae9ef4ad197c8a028304245e73a61cc303f8831a5121b4e8e35cdfce711352f173be374e4d219951
SSDEEP

1536:i4Fu3xgB1hkPlw7aZA82d2fZtXsemHeS6se76bnVuQQU/zpNwmAxKaOQyDORzztT:R6se7mnVuJUrnw7ekjPpbip4R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6ba618d03c1bcec1d12d73b95553a8c4_JaffaCakes118

Files

6ba618d03c1bcec1d12d73b95553a8c4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\kimi-\Documents\Visual Studio 2017\Projects\NejeLaserPrintExtended\NejeLaserPrintExtended\obj\x86\Debug\NejeLaserPrintExtended.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 857KB - Virtual size: 856KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ