2871f4f6a5c449ae88efb0958c939130_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2871f4f6a5c449ae88efb0958c939130_JaffaCakes118
Size

267KB
MD5

2871f4f6a5c449ae88efb0958c939130
SHA1

24f85f95889f3a971ce6d5757b3e192b163cfc80
SHA256

7720cc5bb5d317dd3b5fcdbb705d09031f9ed73c250d987a67c0fb95f855fa6f
SHA512

6e3c803c4b98af885846c99c4c77efb1b0c1b066d9431d5e652b432e9de565bdae02586ac12866c736dc22ec8a617c75c2e73b9852ef06508906661fbda2fc9c
SSDEEP

3072:dJ4kqxYGV2D3+3xq+Ob2BldzGpq1bBduKX0jWl4IFaJV9jCh3tq8MDLzY2V9Ahyc:AJED35+ObCtDjFa39E3RMXzY2jHwb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2871f4f6a5c449ae88efb0958c939130_JaffaCakes118

Files

2871f4f6a5c449ae88efb0958c939130_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\abdallla\Desktop\good_night_source\good night source\CIA Bypass\LP_Example_DLL_Class\obj\Debug\LP_Example_DLL_Class.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 264KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ