7394e1e6e5a4cff94706468a96b21cf4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7394e1e6e5a4cff94706468a96b21cf4_JaffaCakes118
Size

42KB
MD5

7394e1e6e5a4cff94706468a96b21cf4
SHA1

dc3fc3f53124bf17c6c3ac579b373517615a8c1d
SHA256

38d0d3d0942958064590b2170bcc04b4652b8de13a03d4a3c0af16b0ac0b6f3b
SHA512

bff02757fce11f0140f0a111309fd19509fb0fcb0393e9b64b50e682c3f7f6392f53ca90d400dbf22442c3b46b209994ff40eaa33e9f03300350e1b338ff690c
SSDEEP

768:L0kIldlJSxqEMSBVmRMZs3O/PJVIwypk2WhrsVwduFHo8UZuhrMt412ffV:L8fJSxqJuZs3O3xlLzd0Ho8OumF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/CleanMod/mc_cleanmod.exe

Files

7394e1e6e5a4cff94706468a96b21cf4_JaffaCakes118
.rar
CleanMod/CleanMod.rar
.rar
CleanMod/mc_cleanmod.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CleanMod/Olvasd el mielőtt akármit csinálsz!.txt