075db510bc4f03e526daf16e832f7b0a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

075db510bc4f03e526daf16e832f7b0a_JaffaCakes118
Size

766KB
MD5

075db510bc4f03e526daf16e832f7b0a
SHA1

bc2ea41147f60c7fc09225bde262c9ffb05786f4
SHA256

04ba0c7878ac9be97bb3f0a97cd457f2874480232f25cbb0092fc081af68824c
SHA512

9ea979ef5751d73e5702501bdbfa0b3a626ff0f332e1c1c619a93a5130f30f2bf45a9df00cbe0b979b314a816aba3f55500e5d11d347f3955646a017dba4fee4
SSDEEP

12288:01kfgjd1A/TEFbDbzgJwKJbbFcLwcym0manw2GAfiY9MwbIiWIx:Pgjk/oF/bk+KJSh4/iY9uiWIx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
075db510bc4f03e526daf16e832f7b0a_JaffaCakes118

Files

075db510bc4f03e526daf16e832f7b0a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\users\admin\documents\visual studio 2010\Projects\WindowsApplication17\WindowsApplication17\obj\x86\Debug\Coded KAHRAMAN.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ