4d6e04e658ba04ccb550c569c76d0d90_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4d6e04e658ba04ccb550c569c76d0d90_JaffaCakes118
Size

398KB
MD5

4d6e04e658ba04ccb550c569c76d0d90
SHA1

ba61929125f3bfaaea0c775580b0b600e6c09f53
SHA256

816f0b8a5fffb1bb72cce7af987ac02c7f5fa116cbba53d974a2d31dca0124f1
SHA512

e7336f3faf5aacf1eb00b254f152057752b6821366d07395296be35cb4b3c5bc6daae3cf8cc6cc2f23b94ea0b1c3267afbfb9e215827729acf21c8ff69e61b84
SSDEEP

6144:owvLTRnmoxnKH74AbrdlDYoPuM/TMhOf0Bs7W4NygBaoz/U0kN06OJDS1G3eUH:vabpf7YoJTZL7K7y6OdS1weUH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d6e04e658ba04ccb550c569c76d0d90_JaffaCakes118

Files

4d6e04e658ba04ccb550c569c76d0d90_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\kdglkrkjdfhslej\Documents\Visual Studio 2008\Projects\PRI\PRI\obj\Release\GetTime.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 328KB - Virtual size: 327KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ