70c73f5349deb3fffac9316d0beef417_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

70c73f5349deb3fffac9316d0beef417_JaffaCakes118
Size

125KB
MD5

70c73f5349deb3fffac9316d0beef417
SHA1

e660f76f1cacbff9e5292815db8c0c78756cf204
SHA256

62ec36ac2b1e4019835e9ef8019feeba9acc856efff48c0cf70b101c5cb78e69
SHA512

6acb5f129c738205e2fa6d7937088d410fd763321a21b326998271f298e21c5599f29f28a48e5dd68cf5dd7c3a6ca78df06e47492149d9327c57861ffe8f1fac
SSDEEP

3072:lZzAjVd1nut+uV2mTVDjFwkWl176jZ1hCagdQvPW:luVdRQ/vqkg1gEagdQH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
70c73f5349deb3fffac9316d0beef417_JaffaCakes118

Files

70c73f5349deb3fffac9316d0beef417_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Farooq Azam\Dropbox\Visual Studio 2010\Projects\RGBTest\RGBTest\obj\x86\Debug\xRegX.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ