38cf4b5474173beb408722ae8fd92020_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38cf4b5474173beb408722ae8fd92020_JaffaCakes118
Size

17KB
MD5

38cf4b5474173beb408722ae8fd92020
SHA1

f20eb6cb4384438c5bc581a019a76a9befcb7c52
SHA256

a75d5eb74ddf350ec19522731e8dc53cead7696a9b90aa00527ccfe313dec86b
SHA512

14da7441c3be026e2103266bc94906e614b8915d0f1e06a8453e3881c785f339625d33d87f08a1f489902da53ee7f33515ac2588ca2e9b2e00abd594e91bc942
SSDEEP

384:iJfI4ibHvfPULPsOtLf45SQfjsjEPZLzq:iu4iLvfPysORc5e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38cf4b5474173beb408722ae8fd92020_JaffaCakes118

Files

38cf4b5474173beb408722ae8fd92020_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Jesper\Desktop\jc\jCryptoStub\jCryptoStub\obj\x86\Release\jCryptoStub.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 135B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ