4dc7af7df5ad621688722264f93f8437_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4dc7af7df5ad621688722264f93f8437_JaffaCakes118
Size

86KB
MD5

4dc7af7df5ad621688722264f93f8437
SHA1

d09a836448516dfd2e3c47bbf09b86a61cf8f4bd
SHA256

6b258cae438d6b94d6539cc5519d554558e8236ebbeae707e5f57ddbbd2ee89b
SHA512

44dd883df4f87ba1161eb00dc01096d681383f9d5617f93adfa9eebb8bb5d567e0b3c219fd016fa2b6cdf7b759309fa74002cdf49f352b8e8e1086925142a846
SSDEEP

1536:Fqy+EBqBdxmxGXxtyZNPUK7/BulwXSUloSbsmHbEnbZuPW9ExfEW/dIQBce/0a6/:8y+fxmctyZPYoSUloSbsmHbEnbZDExMv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4dc7af7df5ad621688722264f93f8437_JaffaCakes118

Files

4dc7af7df5ad621688722264f93f8437_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Notebook-Dev\E\สินเชื่อ\JMS\CRSAlert\obj\x86\Debug\CRMS.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 131B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ