6fe011afa6d7612b6a80abe4ec2d4a7d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6fe011afa6d7612b6a80abe4ec2d4a7d_JaffaCakes118
Size

50KB
MD5

6fe011afa6d7612b6a80abe4ec2d4a7d
SHA1

06ab6272ff94c1cd9b9cf0bfafc936dac4c83431
SHA256

9bc8b783218c9f7cc52b696aec874263ed1688e92fe596a7b2630b652fe1d204
SHA512

ddf0bf803e385723756577c148f7a00c35ac79539980883984698c202c99fd21cdb6c50ca5b562186ab4bbc4698212a87aac3b9e741a8acf415191b5fc76e2b4
SSDEEP

1536:fbUWH1YeARL82h5wQUbAqhaJ1ddKmLw3L0b:fbxGeAF8g5woqkJ1ddlFb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6fe011afa6d7612b6a80abe4ec2d4a7d_JaffaCakes118

Files

6fe011afa6d7612b6a80abe4ec2d4a7d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\MyDocs\Visual Studio 2008\Projects\Test10\Backup\Test\obj\Debug\Test.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ