0eebbd3d321deaf9a52ba82e376b1b57_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0eebbd3d321deaf9a52ba82e376b1b57_JaffaCakes118
Size

54KB
MD5

0eebbd3d321deaf9a52ba82e376b1b57
SHA1

fe0e8d40b6f0350ec73541f24c8a98600efe237c
SHA256

9a70c0fa82dd869c7b769f53a0f2f245e58c379690ba2933aaf80f8e9c831958
SHA512

1a4d8d5649e38e2bda71f5fe1556ea30ab35e6e7f80e4e52fe5b5f15f2a8831a0faa9a103c48ebe163c907c382975847cf900d942f63ee7993fa55f107f4b4d8
SSDEEP

1536:t1bzEFDOJ9Oot+VesVeXPtR4aZAX5401Vd3sKg:oFDOJ9Oot+VeRR4AAJ71Hng

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0eebbd3d321deaf9a52ba82e376b1b57_JaffaCakes118

Files

0eebbd3d321deaf9a52ba82e376b1b57_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\GN0M3\Desktop\Dev\N0PE Systems\N0PE Bot\Server\SysDriver\obj\x86\Release\SysDriver.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ