16d7e9b35ceb9c0dbb56dae186ae96c1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16d7e9b35ceb9c0dbb56dae186ae96c1_JaffaCakes118
Size

868KB
MD5

16d7e9b35ceb9c0dbb56dae186ae96c1
SHA1

a185d6de839a15b727a5906b3111e209cde87744
SHA256

d4888db3c32f57ee5b76c608207c1273e09513f0790d81fc0f4e2cce7de2a30f
SHA512

259c86d48d7130fe4c538a3c33410d6e2426c86420180b7b2e7635f475762b12517141f88105fefe092f82e86ac5aa497a7597ae7a0ebde64f02ac891a723f9a
SSDEEP

6144:HF9I9VQeT8DF9I9VQeT8rF9I9VQeT8DF9I9VQeT8oiF9I9VQUT8:l9GP4h9GP459GP4h9GP4X9GH4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16d7e9b35ceb9c0dbb56dae186ae96c1_JaffaCakes118

Files

16d7e9b35ceb9c0dbb56dae186ae96c1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\MapleServer\Redirector SEA 1.02\OdinSEA\obj\x86\Debug\OdinSEA.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 702KB - Virtual size: 702KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ