0a85ad4ef2600c6465ee8fe920a2ab57_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0a85ad4ef2600c6465ee8fe920a2ab57_JaffaCakes118
Size

329KB
MD5

0a85ad4ef2600c6465ee8fe920a2ab57
SHA1

e4f2a4db61aca7b022f5341fdb8786585d5ccc05
SHA256

188658f6e6a91b3ee5349a568d35759ec85ffcafb6c248c8fe04c62a0e9eb3ed
SHA512

a7c81f125ae47ec35a4e1c58ca2e415eca424f71e62880ae748ae5a1f807787abef540cdd7019a2c96bf8c1a4a26da7c2c5beedf17790787016f32eea6cddbd9
SSDEEP

6144:BojDuUlqOSBojDuUl1ojDuUlqOSBojDuUlo0pXPVwaijojDuUl/ZAqaoUomBsQXu:BeDuUloeDuUl1eDuUloeDuUlTqjeDuUp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a85ad4ef2600c6465ee8fe920a2ab57_JaffaCakes118

Files

0a85ad4ef2600c6465ee8fe920a2ab57_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\ismael\Desktop\vb2008\makoki-projects\install\install\obj\Release\install.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 289KB - Virtual size: 288KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 139B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ