88f39686e179d35ff259202de97e5677_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

88f39686e179d35ff259202de97e5677_JaffaCakes118
Size

17KB
MD5

88f39686e179d35ff259202de97e5677
SHA1

292b6b836c33c0ec47823874513d56d5813df522
SHA256

8d7a4850ddeebe21f1170b2b20860805a4fb967dd6ac5b788875c8443fc3ed8e
SHA512

b52ae8206b27ad2edafb12902c305550a07913bbc3ac4a0c7aebbbed21685ac90f5a8a11246e801757cc40793bf7d6839b2ce498f5aa1497b44dcbb53de1db74
SSDEEP

384:El8GYqUIYCYP7gG9QqFBL1i6GKOYC0ko0:M2qrifQqfhG5YC0k7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88f39686e179d35ff259202de97e5677_JaffaCakes118

Files

88f39686e179d35ff259202de97e5677_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

F:\TIMDIM\kl2018\Loader Premium\Loader Premium By HAO CODDING\obj\Debug\saguir5476.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ