76020ce08191f9c693ef0d13ade23ade_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76020ce08191f9c693ef0d13ade23ade_JaffaCakes118
Size

1.9MB
MD5

76020ce08191f9c693ef0d13ade23ade
SHA1

ac6b9eb934b8f1b2dec435dc8f249fae23f8b264
SHA256

ff6824e23617fd53f433ecb7339a2d341ded6611065e185627c9577f570b2c7b
SHA512

8a3e4708fb4987288d276ba77b693433ce88b96043c7df19b74a1671335842f9a117db2eb910db79b18da6dc692b53284bf0440314fa86937ff0904f495150ab
SSDEEP

49152:aCiFTyw2GXB8hpQBAgG6cmFTyw2GXB8hpQBAgG6cgv:aCiLsEG6cmLsEG6cgv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76020ce08191f9c693ef0d13ade23ade_JaffaCakes118

Files

76020ce08191f9c693ef0d13ade23ade_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Administrator\Desktop\LotusMS CLient Src\obj\Debug\LotusMS.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ