aa2def9384e6177a3c6f490bcd7f5a01_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa2def9384e6177a3c6f490bcd7f5a01_JaffaCakes118
Size

29KB
MD5

aa2def9384e6177a3c6f490bcd7f5a01
SHA1

78db47ccf3df345f386568b5e3b88f87e2f38bec
SHA256

1d16c4f6cb54bf8b84026ad48efc8e96316bf52903be5d0fc44da856e994901a
SHA512

4b36eca096bb8333f11572fe9d7dcb5ca8bf6b5f6d72d412393b47bc881f12a13f658dd198512539dae336193148ad9457a59aaaff28f02120d2bf3c729533cd
SSDEEP

768:eXJpyq7U41u6usVajxgRD2CLIdWN1hGRq9tInm:mJpyqg41u6usVajxgDIYV9Gnm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa2def9384e6177a3c6f490bcd7f5a01_JaffaCakes118

Files

aa2def9384e6177a3c6f490bcd7f5a01_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Krolik\Documents\Visual Studio 2015\Projects\RAPORTY\Szybkosc\obj\Debug\Szybkosc.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ