081e1775826ecd5063fbc22ff3522664_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

081e1775826ecd5063fbc22ff3522664_JaffaCakes118
Size

2.4MB
MD5

081e1775826ecd5063fbc22ff3522664
SHA1

c61602551d51a8c98e33d634df7c6c34163ad866
SHA256

20fef4f4c444a9f9c298090d33719eb14a65289fe614331a640a4eeb7113c101
SHA512

51643200ad190db0b6bf5f4de8fdcd15513052f8c783d1d721ea28bd52d9ff9a40cbedaca1665f87b32f0ce541401586bc62f43991d5a8508bd6c305636543e7
SSDEEP

12288:4jpgf/0PwTEl+shAq4WBYt8XAMkPS2O5HGSbTAJ4dNAHLVk4ppppppFmJi4yt:iqfXAlVz4Xt8TkPS2Km8TAJ47flvW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
081e1775826ecd5063fbc22ff3522664_JaffaCakes118

Files

081e1775826ecd5063fbc22ff3522664_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\1337\Bureau\Crypter 2\MY FREE CRypter 2.2.7\stub for test\WindowsApplication1\obj\Debug\Dat.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 174B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ