651b30fe02e76d3b90a2d40b530a5675_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

651b30fe02e76d3b90a2d40b530a5675_JaffaCakes118
Size

33KB
MD5

651b30fe02e76d3b90a2d40b530a5675
SHA1

1223fe092dfd3519570350d58312b304b6f29258
SHA256

cfc02917c0721c3b69fb02eeaf5d8557888d640d1d979b1628b4589384ae9fc3
SHA512

bfa10b1f40cff56b75e1789556023d3e2cfbb94e339c417b7ef352b72cf08a9aefd1b53da7aca78c24338cbf44fc4cc3999b64f4d0af1452cf83b61ecfd04c0c
SSDEEP

768:rhWFrYjesdm817tNOC2NbCprLrOjGVYPCsMBcPwDY8rQL:rUFrYT8817DYeOj90BYH8kL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
651b30fe02e76d3b90a2d40b530a5675_JaffaCakes118

Files

651b30fe02e76d3b90a2d40b530a5675_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\$@!\Computers\Program Source Codes\541's Products\My Current Projects\FH Stub\FH Stub\obj\Debug\FH Stub.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 163B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ