31bb2be5794a1981acdb69951b3d1865_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

31bb2be5794a1981acdb69951b3d1865_JaffaCakes118
Size

119KB
MD5

31bb2be5794a1981acdb69951b3d1865
SHA1

d1ee53b36ace71b72f71db1a7650aac171b3fb04
SHA256

8fd057ace7ef1f13384a1eb230d91ebe0fece11d5517e838e735f25bd01645ea
SHA512

920d6488afeb3e8149a3a5f961c0dd91d42a09efcaf57eec5772251e6e3f37bf137f5c4534802114867e5443cc887e4dfc79124987649c22f51a39d268e9f05a
SSDEEP

1536:Zdc8panS9WERcehTPM4K4OZz5Jxcmci2f+y3RmqgOea9s7e8znthV:ZGAcehWDSq2jmqgOemMe8znthV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31bb2be5794a1981acdb69951b3d1865_JaffaCakes118

Files

31bb2be5794a1981acdb69951b3d1865_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\VS 2010\Projects\Nexus\Nexus\obj\x86\Debug\Nexus.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ