0abdbad41356d8c60b882531121d916a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0abdbad41356d8c60b882531121d916a_JaffaCakes118
Size

394KB
MD5

0abdbad41356d8c60b882531121d916a
SHA1

a1c19082a8a720cb4ed366727ba1cf3783f9d497
SHA256

d495384affa0a89d2bc29278e5b6b9adba19f46f1ccaa95bd4158fa9632bfdcc
SHA512

d306949c70e003e63668f8a11f2b3104a39400aa9a62e504e109476da4e1b95dde112a0868dcb6be173605e521141d749b11dd24aad2a1565f7ee37603c229dd
SSDEEP

3072:OYByJ35v0Haauz//U3+SBZx+Y2YbPfwDH3qHJpDL9lpQYByJ35v0Haakz//U3+S9:XU56HaPMX+APiaPU56HarMX+APia

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0abdbad41356d8c60b882531121d916a_JaffaCakes118

Files

0abdbad41356d8c60b882531121d916a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\Admin\Рабочий стол\проекты\GetID 01\WindowsFormsApplication1\obj\x86\Debug\Get ID for mail.ru by Gamer.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ