740b1b89355eeb811265aa50def364b0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

740b1b89355eeb811265aa50def364b0_JaffaCakes118
Size

1.3MB
MD5

740b1b89355eeb811265aa50def364b0
SHA1

3e335818bffcaabde9ccbb53c7f9dcb11411c7d1
SHA256

d591427186c52690c12a065a064aa8235169fe1b7915aa7e2374dea875442ca0
SHA512

11c78402e6a2acc2a89f2932c47d0a0976d143cc66a5c1cb18caf59f2ba96cad9b8f9b836e38b2a94a7bb8e2a8a1b1def441c51ea1550e8531b7bc00e4c5bba9
SSDEEP

3072:hD2HwoODb6c+b6cs5ryb6c7b6cxY91uIzJb6cD:cq6c86cx6c/6cxegI56c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
740b1b89355eeb811265aa50def364b0_JaffaCakes118

Files

740b1b89355eeb811265aa50def364b0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Emin\Documents\Projeler\NLoader\NLoader\obj\Debug\NLoader.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ