0a7b2e226458ffdaf16e1bfa25916a56_JaffaCakes118 | Triage

Sharing

General

Target

0a7b2e226458ffdaf16e1bfa25916a56_JaffaCakes118
Size

114KB
MD5

0a7b2e226458ffdaf16e1bfa25916a56
SHA1

f48f5bfb0ea8e87884cd14c101f846f6918153f5
SHA256

245d8df7ee8e8ab153c6760d81ea259b5662ba139e4c941d9a1e00591dc1a2f1
SHA512

ae7dd85d58936bf474aad090c9158084e28924c5b4aef363693fe21e1a265cc7a6b43e902afc0409d37582f98ab2d43063807e07ebd4a0b656265b5ddda4711e
SSDEEP

768:Zmkk8TXXH5tzHcCuK1/0TAyhJfP2LevvIM8ELRYT5nfG2oRFyHdBmBBcvWc6YkCK:ZmkkcH5NBk4ELG5fGNRFYmQvV6zF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a7b2e226458ffdaf16e1bfa25916a56_JaffaCakes118

Files

0a7b2e226458ffdaf16e1bfa25916a56_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Sniper-iQ\Documents\Visual Studio 2008\Projects\Desert sniper\Desert sniper\obj\Debug\Desert sniper.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 165B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ