2e673d2bea0dc97d8ad96f85fc1a68da_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e673d2bea0dc97d8ad96f85fc1a68da_JaffaCakes118
Size

161KB
MD5

2e673d2bea0dc97d8ad96f85fc1a68da
SHA1

75a282c1ebca0c7cec00aaffe52347923bf6500e
SHA256

a049b97362401e890406db957e373a752925479bb66812a491a826048550fb5a
SHA512

4df6a37c6076bcb13623e3eed0b704964ea331b272ad7b954153a1ff05e96a2d846f0f2ddb3de5470e98b6d2167c81ffc95e2e0589ae1f06656d11943f38e943
SSDEEP

3072:U8fgB7twVt5pNMKGaNfQcMwWi23M6FUCJkzKc9JA299dvv:U8fg5tw/51a53M6FtJnc9Jf9v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e673d2bea0dc97d8ad96f85fc1a68da_JaffaCakes118

Files

2e673d2bea0dc97d8ad96f85fc1a68da_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\Administrateur\Bureau\02.pdb

Imports

mscoree

_CorExeMain

Sections

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ