5cdbfe6886b70e57bd61cad3d6a64073_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5cdbfe6886b70e57bd61cad3d6a64073_JaffaCakes118
Size

333KB
MD5

5cdbfe6886b70e57bd61cad3d6a64073
SHA1

9b39da7880386c9f45a7cbad5ebb18d3ca17da47
SHA256

86a0891e11e99979c1352bb3b079cc67e2463f69ea40cebc5aab6f5043cad1ed
SHA512

5701431544a8cf218e63a4050a81fdd76f42e73b469ed81615cfead4dc75596f80f9dd4e250b7a5196bda014903d770e0bbe3f3fc9264e0da79e3faa70ad28c7
SSDEEP

6144:ApynS8RfpynS8RADVR4zmO2CGacdOO8odwHZIcR6E7Hx:AVKVNR2n2RdlG5IrEV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5cdbfe6886b70e57bd61cad3d6a64073_JaffaCakes118

Files

5cdbfe6886b70e57bd61cad3d6a64073_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Dr0ax\Documents\Visual Studio 2008\Projects\Ganja Crypt\stub\obj\Release\asdijeiapripajmspdi'oekraosindiopnaerpjmaosjkdera154894s4d156e1ar894.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 207B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ