401cf9d8b2aedb96ec27da7a1ca6caf6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

401cf9d8b2aedb96ec27da7a1ca6caf6_JaffaCakes118
Size

141KB
MD5

401cf9d8b2aedb96ec27da7a1ca6caf6
SHA1

17e1e73b23c835835642bcba197c720de73d8a3a
SHA256

49aee7ba65a0b858aa45806fa34f3989098ccdf0dc657d96c26f462927ec00ce
SHA512

82e3b2336ab602602b1f78e9fbf6a98600f229bd6f79770eec2da1ffc3d484a244f4b138e7a7bb20d778464ba27830c7e2fbd83399c604a94a2e36685599a69e
SSDEEP

1536:e0F+/CEFJlQjUho9JdZ5829cocM9wVcl:b0/1FJeEo9JdZ5r9vp9qY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
401cf9d8b2aedb96ec27da7a1ca6caf6_JaffaCakes118

Files

401cf9d8b2aedb96ec27da7a1ca6caf6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\domin\OneDrive\Desktop\Ransomware_source_code-master\Ransomware_source_code-master\Rasomware2.0\Rasomware2.0\obj\Debug\Rasomware2.0.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ