2bde3af0ccfa74be4eb34dc4781d2b6e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2bde3af0ccfa74be4eb34dc4781d2b6e_JaffaCakes118
Size

86KB
MD5

2bde3af0ccfa74be4eb34dc4781d2b6e
SHA1

9049a3357f04217628c9cd93b9094a66617a9aa8
SHA256

9d93f58662e99c1b43de5c00cee58bcc7379c336232a9d7e2d0145b07e5a4061
SHA512

563997debdfc1ce6ca18e63996711258df04cd5634dc6c08f46c44f5bef724490922c4b41e2421f2d62b707a2b3c5611b895249aa6864b42f213816283dda536
SSDEEP

1536:Q6xes17evYiQCJU2gZhtBq4I742jnYnyhUuAYPTL9:QQes1p2ayrrYd1wL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2bde3af0ccfa74be4eb34dc4781d2b6e_JaffaCakes118

Files

2bde3af0ccfa74be4eb34dc4781d2b6e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\mcs\Desktop\تقسيم\Data\WindowsApplication1\obj\x86\Release\SpyNet.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ