0fa58cc4da02d9b4d9cb930ebe9ca2b0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0fa58cc4da02d9b4d9cb930ebe9ca2b0_JaffaCakes118
Size

38KB
MD5

0fa58cc4da02d9b4d9cb930ebe9ca2b0
SHA1

f5eb0f3f44ad1b4802e6a1626d0b6cb984381b63
SHA256

081cbda9f11b1b9e80da852ee64220c8862d0169d06fdb04460fe0cff12d0a64
SHA512

d279967d2d83831d851f3d70e18b338b89e198d4862d9d199ce4322a087a02393f15ab1aff6b7cdaea8ffbcac6bfd7577ba7a72c5497d8c677feaefe8382377a
SSDEEP

384:evP96uISZaDOgp+/N9Ob/sENmONmtyJI/RMt4NxMT4m7Lf45TQft0n+I8aDx9JlV:YZat1gQLWut4Eb/w+Wx957wsB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0fa58cc4da02d9b4d9cb930ebe9ca2b0_JaffaCakes118

Files

0fa58cc4da02d9b4d9cb930ebe9ca2b0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Stephen\Desktop\AES stub\stub\obj\Release\stub.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ