96fd1bcc8bf0bf1426d63268109c8dd3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

96fd1bcc8bf0bf1426d63268109c8dd3_JaffaCakes118
Size

268KB
MD5

96fd1bcc8bf0bf1426d63268109c8dd3
SHA1

655f8f653feed7e1acb7c8f6658bc1acf712e3d3
SHA256

672a53d60fab37688f15b07a17fe675e6071bdf9778118da0283df137b7f5bfb
SHA512

52481e69e71277be95885597a608845e96542352afb04dc4e7d13e9e6bed6be63654767e5bf173d14243a539e05fd2a0fc0b92cd503cf90e81a050b3f87e7737
SSDEEP

6144:UAQbxPRefeyXJ7EzfZlk/YSNXG2/ex19WZ9xpr198gx:byxPRmJ7aZkw19WZ9xpr8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
96fd1bcc8bf0bf1426d63268109c8dd3_JaffaCakes118

Files

96fd1bcc8bf0bf1426d63268109c8dd3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\LavasoftBuilds\2\WebCompanion\WC-Dev\src\WebCompanion\Installer\WebCompanionInstaller\obj\Release\WebCompanionInstaller.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 241KB - Virtual size: 241KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ