1c5a168249bbeb23fc34ac44216ff156_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1c5a168249bbeb23fc34ac44216ff156_JaffaCakes118
Size

280KB
MD5

1c5a168249bbeb23fc34ac44216ff156
SHA1

dfed4cf6f854d5ae12de3df0c5279eb5e7a558b0
SHA256

f2bcae4712f8d415b4d56fe0d69f8def9bdddcd562fffbd93be0b8376f57b600
SHA512

94cddacfb333f8061746381769cbf894355f635b1c6c467c791a1b4989d7f97ce9db29a0e9ef0dd1024aa0960dc3ef3b19228550132c9a821f9222dbed9ebc5c
SSDEEP

6144:J4m788qP0H+QGiQzZ1tUwl1E1fZ0sszj:J4r8Q04iKtU2m1Osq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c5a168249bbeb23fc34ac44216ff156_JaffaCakes118

Files

1c5a168249bbeb23fc34ac44216ff156_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

J:\Documents and Settings\HOT LINE\Desktop\Morph_14.11.2011_093031.pdb

Imports

mscoree

_CorExeMain

Sections

.rsrc
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 163KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ