2e2269e8d4c3a268fafd3f798c123a34_JaffaCakes118 | Triage

Sharing

General

Target

2e2269e8d4c3a268fafd3f798c123a34_JaffaCakes118
Size

352KB
MD5

2e2269e8d4c3a268fafd3f798c123a34
SHA1

4f2b474b20ddd19fb8882ea43bcc27975f4e21ad
SHA256

6be2e789944d80ec9bd38c47409d28c2cd5780d92a1c2a5033e898cc5a421876
SHA512

b7d2b4e6f83bd7477642da1c13810fba2c9b230a884b1ac1913defa7ebf6e43bad062861757cd3750b5d52ee6c77e4c90b8fbc1ccd57bf79447701e50b0bb218
SSDEEP

6144:TecMcsQ2GsTUA2UOo2Jc4aCEQ+IDW6PIXTb6on:TLMcsQ2GsTUA2UOo2Jc4aCEQ+56PIXZn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e2269e8d4c3a268fafd3f798c123a34_JaffaCakes118

Files

2e2269e8d4c3a268fafd3f798c123a34_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Byte Crypter v2\Bee\Bee\obj\x86\Release\coddy.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 105B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 288KB - Virtual size: 287KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ