471d7cdaf5830f993a0ed2f735939336_JaffaCakes118 | Triage

Sharing

General

Target

471d7cdaf5830f993a0ed2f735939336_JaffaCakes118
Size

197KB
MD5

471d7cdaf5830f993a0ed2f735939336
SHA1

74a07388c3a9203c33cc8be2a30b7cd49630ffec
SHA256

b2e9cc8c707eba04dbf172a2a2fc99a2b05e51bbc95a10272a7818cc666c0935
SHA512

ed853db678a24604dfd826637a911ead03425f19dea1e1bc3336a40e284b86eb352dd5968f578f7c0a33884808321e5948eabaeda270fade11ead63997fbdfcb
SSDEEP

3072:IQY/X0OCbGxI8PfdgvUrWCTdrzW//0tWPdM:IQYc2js9+WUIVM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
471d7cdaf5830f993a0ed2f735939336_JaffaCakes118

Files

471d7cdaf5830f993a0ed2f735939336_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\hackerlog\chaleco ultimo mod\obj\Release\mensajito.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 126KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 110B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ