28e2f65882e52f6c3a703b577fbe8179_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28e2f65882e52f6c3a703b577fbe8179_JaffaCakes118
Size

473KB
MD5

28e2f65882e52f6c3a703b577fbe8179
SHA1

81840c1e1aae70108962e550a610b4bbf88c6ef9
SHA256

1a8a891b04af6bfa1990931504a055d0ab803a6deaf22543c179c65cb687bdcc
SHA512

05c22464012dd1f89bf1e5b3ba1d3e08b060b74c8307859c406f9f225113535fbb6b904e5f7eca1140259c6bf83abb3b7fd999e73c68d2ff6379125029072ed8
SSDEEP

12288:/gFKvpiHt+ITeeerLszsgFKv5iHt+ITeeex:/gkctWgkMtC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28e2f65882e52f6c3a703b577fbe8179_JaffaCakes118

Files

28e2f65882e52f6c3a703b577fbe8179_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\buqqer\Desktop\karakter deneme\sine keylogger stub\sine keylogger stub\sine keylogger stub\obj\Release\sine stb.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 268KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 203KB - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ