092676299ce4fe55f3f19688e2ea6792_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

092676299ce4fe55f3f19688e2ea6792_JaffaCakes118
Size

237KB
MD5

092676299ce4fe55f3f19688e2ea6792
SHA1

e6aac1b40df3f327011278ea75e6bf74e3ee7ae7
SHA256

0dcecc0df4d32b6abe78a4f18135627ee1c3d6c5af8114d8e82b614b4a2fc137
SHA512

3a63d8a25bb206ede0225cd17cf134a04a09d92bd57528cbf8ac16ae89d5fb5f9656917fc4e7c67dc8e301ece96666289e994cfa4d0372a93b082e6b7a40db83
SSDEEP

3072:4d8B3DAHVNVNbEiFRH6gFXl9c3m1pCOj/wMb7xYhhqYv4qymSfKtYazObCb/2u0s:4dy2bnl9c2aOj/wMb6sB2ObIX0ehPxcE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
092676299ce4fe55f3f19688e2ea6792_JaffaCakes118

Files

092676299ce4fe55f3f19688e2ea6792_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Jake\Documents\Visual Studio 2008\Projects\WindowsApplication2\WindowsApplication2\obj\Debug\Stub.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 163B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ