07830af4a2fb6657083cb2c27061263f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07830af4a2fb6657083cb2c27061263f_JaffaCakes118
Size

8KB
MD5

07830af4a2fb6657083cb2c27061263f
SHA1

329379935556607c47c808cd893c6b48fc5d77e1
SHA256

32c62530046732192b0329587583c217d01354cfb3c4b85e8f2e33cc87f249a0
SHA512

fb41fe2a99883d2159674d8dacc0006c3d3bfb8095872c52c33c3a3aad735a5b0d7675a340cd382f78c2d0740b3eaffdb0bd7c920138d986b1dd14cda3eb0a8d
SSDEEP

96:aE20RRIKq5TkAV7ZfaEAMVZpmwy0Wzu25qgmd5zNt:aEz4X5TkAVFanMVbmL0Wzu25qgo7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07830af4a2fb6657083cb2c27061263f_JaffaCakes118

Files

07830af4a2fb6657083cb2c27061263f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\jbulaswad\Documents\Visual Studio 2010\Projects\CandG20\CGBossScheduler\obj\x86\Release\CGBossScheduler.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ