3bffef4c2d207ba00beec3954e87a8db_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3bffef4c2d207ba00beec3954e87a8db_JaffaCakes118
Size

381KB
MD5

3bffef4c2d207ba00beec3954e87a8db
SHA1

4f65b52a21250619caa3bae7e43884d3ca5977a1
SHA256

9926582144643ae6c0a0184e646cb85a6430f0b5007268a3a04020f917f70752
SHA512

314c4a588153eb2dd93a433dc91afbb5cd5eb5f49367084cbf5e082c4c7a48c74e74d78b3a9d81380057f6ae1376bfca10ff2f45693b7f53e2be72e28f7abafc
SSDEEP

6144:VWCtaJppYW9RX9N79eSY1/sr584eeDXrGMUDMnYArVRk3HE3F5Lr117prtmUmmGs:VWCEAW9179eNU24e8GMUWw3E3zr1PtmK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bffef4c2d207ba00beec3954e87a8db_JaffaCakes118

Files

3bffef4c2d207ba00beec3954e87a8db_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\Programmieren\Projects\TheReal_FHY-Bot\TheReal_FHY-Bot\obj\Debug\Windows-Explorer.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 241KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 141B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ