45cd7e923cc4ce1e413db240e549bc58_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45cd7e923cc4ce1e413db240e549bc58_JaffaCakes118
Size

1.2MB
MD5

45cd7e923cc4ce1e413db240e549bc58
SHA1

64cfae63b4e9916c1365bd67e2e272e547ac5909
SHA256

f47351671b9a49119817688dbdd10ca9f1c81c74958b8d933bfe6746763c384b
SHA512

1b1d91dedbe2199bd3181f7c01968c6134527e009207f7f42b9a77af6eb3e7f977cf9bb23b0aff407262cd92306db62f3b7dbcfaaf6a40ab6440cd2f56e4e238
SSDEEP

24576:KGnTWnTWnTpnTMnTWnTWnT6nTmnTPnTaKh:/IINOII84LV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45cd7e923cc4ce1e413db240e549bc58_JaffaCakes118

Files

45cd7e923cc4ce1e413db240e549bc58_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\-=PULPIT=-\nowe apeczki\Mass Effect Andromeda Demo\Instalator_GTA1\Instalator_GTA\Instalator_GTA\obj\Release\Mass Effect Andromeda Demo.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ