076fda0c0d5e44f3b1a95a5163ac9f2f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

076fda0c0d5e44f3b1a95a5163ac9f2f_JaffaCakes118
Size

234KB
MD5

076fda0c0d5e44f3b1a95a5163ac9f2f
SHA1

2b8d9ebf3a90d0633eddc13da1c9d4cd3f7861cc
SHA256

060b82466f56c13046c9e84491ee219d8d2246a9dca0e74de2b8cb5452e8e1ed
SHA512

ac1ae42a0db8258044b73db5495b9f94d80ff00bd75c95caf77322b73c36bcb6b92c878f0b7533b519da26df323f9735c724fdc0962cd503130a38dc48c006fd
SSDEEP

3072:1lL7i6lL7ifXRMCROuKx+B8baeg0cqvWMDm2UWj4EqqDaxZss0mEHUIpQZh9h45l:XFkRSzMGg0b1gqLLDMdWnpQZh9h4/C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
076fda0c0d5e44f3b1a95a5163ac9f2f_JaffaCakes118

Files

076fda0c0d5e44f3b1a95a5163ac9f2f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\packar\Mes documents\Visual Studio 2008\Projects\Stub2\Stub2\obj\Debug\Stub2.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 159B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 146KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ