36a9fa795c653c5745d9d50882b8f5e4_JaffaCakes118 | Triage

Sharing

General

Target

36a9fa795c653c5745d9d50882b8f5e4_JaffaCakes118
Size

13KB
MD5

36a9fa795c653c5745d9d50882b8f5e4
SHA1

e800a24e1c8261d146cc9e827f9379c409f0a9fd
SHA256

8d852b8b8b51bf5ce324b849716e75c087e35eca966a72db755f5da80156ce2d
SHA512

f104262cf55af962dad4603a12ad45d59fdc4455d558cdf2a5af5ec802af5096999aebb90a6f2957a383061fcabaca9a5738c67f0c5015871bcdad21c5feec4a
SSDEEP

192:LPQrT3BfmNSKyI8gg4smZBmOD2DSeauiYV8WjbjJhjOooeq3kHR:LkdmNS1eg4BXjD2xUYVVjb3q3kH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36a9fa795c653c5745d9d50882b8f5e4_JaffaCakes118

Files

36a9fa795c653c5745d9d50882b8f5e4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\henrique\documents\visual studio 2010\Projects\Game Components\TestProgram\TestProgram\obj\x86\Release\TestProgram.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ