4513b447760dbab3a566521e83228980_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4513b447760dbab3a566521e83228980_JaffaCakes118
Size

252KB
MD5

4513b447760dbab3a566521e83228980
SHA1

41b9abeced88cc02f177a8e8af926c90af051cae
SHA256

3293da9bab69e4a49c904ea6edb15ef21f10e33eeae318dab0b5d9b37b966b42
SHA512

42fc11661253da875df630ad1b7364af9082e1ac4a8c8e416e18a0e2daea27c043652739c17fbb0680b9e48bad03f79a5532892d33a47c9cbe7e1e7c3b636054
SSDEEP

6144:gE26rjWgo+JJeVlRaOgh7SuQLNMcrlnmdrEfxXtEO7Hwr:gE3rSgh7y4XhDQLGCYdrMXqO0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4513b447760dbab3a566521e83228980_JaffaCakes118

Files

4513b447760dbab3a566521e83228980_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\EpiK\Documents\Visual Studio 2008\Projects\WindowsApplication2\WindowsApplication2\obj\Release\WindowsApplication2.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ