7be62e5cb79510f0656e548f3380da3a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7be62e5cb79510f0656e548f3380da3a_JaffaCakes118
Size

2.3MB
MD5

7be62e5cb79510f0656e548f3380da3a
SHA1

143c3aee0aab1a5a8125314a10022e40d8904011
SHA256

47d0bb397fff0910b579cd45f8463fc7db7e230f8ebd2c361aecc1d17d8a84f3
SHA512

1a2febf879e5a289d82b8794ac884fc605f4af1c80c774670d6959647b13b789169df1626ecd8aca5955fd1c3a27048e47b1ca1f0b57d497f7076fdb315eeced
SSDEEP

49152:wxppKudf03qWLtk3BTJlLAP72nFAP72nFAP72nk+PC:IppfKqWLtk3PlLAPsAPsAPG6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7be62e5cb79510f0656e548f3380da3a_JaffaCakes118

Files

7be62e5cb79510f0656e548f3380da3a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Desktop\Documents\Visual Studio 2010\Projects\EtherZero Wallet - Alpha\EtherZero Wallet - Alpha\obj\x86\Release\EtherZero Wallet - Alpha.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 202B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 146KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ