6fe84401fd16c14d75a593ec2482f936_JaffaCakes118 | Triage

Sharing

General

Target

6fe84401fd16c14d75a593ec2482f936_JaffaCakes118
Size

692KB
MD5

6fe84401fd16c14d75a593ec2482f936
SHA1

7ccf540b1f8d61bcfbddbac393e413b2357a53ff
SHA256

0cd69ca8cfb275b5e7abf999b71d2a08673608e8df64add07a35257e02e9884c
SHA512

3cf2b0f43ca18a71a4a1a0c0cca5b6aa82a9376874495b8b694ceb2da0c1ce4316f1de791cd3e6fae7f7c010e11bba7882d72afb65017e3ff6de7c06f68f39fc
SSDEEP

6144:SQSlUhyqkZTGJTSr41sLBisUpHRP9qJfriwwLFOi+7GgW+QHvHoyHE9zLmr3q8dv:SHJZpjdUJoc8gkQHZraqhfg6YU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6fe84401fd16c14d75a593ec2482f936_JaffaCakes118

Files

6fe84401fd16c14d75a593ec2482f936_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

J:\Reformatage 27-06\NoxiousCrypter Stub v1.0\Form1\obj\Release\Stub.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 668KB - Virtual size: 668KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 125B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ