62fcc8b7987e71b64639976c09441ac8_JaffaCakes118 | Triage

Sharing

General

Target

62fcc8b7987e71b64639976c09441ac8_JaffaCakes118
Size

100KB
MD5

62fcc8b7987e71b64639976c09441ac8
SHA1

9d03ddabb2b5924eecffc546749eec557531b0d6
SHA256

73a7cc6d688569ccf00ec2d8aa1fe434e005a9b262f40454f58eb82796510dd3
SHA512

a258b8784cbddc0f4dbd2d5e98363946119c49a72815e2d8e7acfb1abc93589ba7703bc3f085dd479d65c20c897099c67b90036554842f09cf73022b9e7a9005
SSDEEP

3072:wZYlPIkR39XuZ3wRK04WVaz7uf9tKWQ9+Dt9BkneXuZ3sA5eJN:tjXuZ3wxaG9tPkeXuZ35s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62fcc8b7987e71b64639976c09441ac8_JaffaCakes118

Files

62fcc8b7987e71b64639976c09441ac8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\goga\Dropbox\work\exe\MicroTorrent\MicroInstaller\obj\x86\Release\MicroInstaller.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ