96eac24086b333428904b97f13b91282_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

96eac24086b333428904b97f13b91282_JaffaCakes118
Size

25KB
MD5

96eac24086b333428904b97f13b91282
SHA1

ddca4e3109d677eb7d2a627a3259e8d66548798d
SHA256

e144d9dbef6ff1b050b0a10b163680874771eed79e4379ace26d616628d07e99
SHA512

f381890ed8a4fd5ab97fdf5e6ff8e7d1e60d66fa1eb2872665eea603ee72822b726aa8cca6016df91a34172b7160185b6a29e7266de29ae091d7ede9ab1d6d95
SSDEEP

768:RU3mRVlpMJx46HT7LhqAwNKUEiVghzCunuaukU4FzzQcO2GfbfpZBs+JMCwS0OYg:SGVI46HT7LhqAwNKUEiVghzCunuaukUN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
96eac24086b333428904b97f13b91282_JaffaCakes118

Files

96eac24086b333428904b97f13b91282_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\VS\FalcoReg\FalcoCrash\obj\Release\fr.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ