7841c424eaa7365a5c6b9fa3865e4d3c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7841c424eaa7365a5c6b9fa3865e4d3c_JaffaCakes118
Size

340KB
MD5

7841c424eaa7365a5c6b9fa3865e4d3c
SHA1

a96b9c004c8dc800ad6d3bc3e4f5f9784ed00b6d
SHA256

7966425c7004b9025f93423477fe684b928a861ad404c4ed2f1edd51c328e04c
SHA512

7963e41640434e8eefc31775e7a3b9750c9d3a681a6f9ede4c509cb5f406a47701b4e87eb1c4ba085906d8e7a82f844598d528e3b892feb9f624638f908819be
SSDEEP

6144:JwSOjMZZ/mzXUPO7bVDSpUiRxpHJqiY+cNPN+NxtaseVMuXpyVKMdSTgCqH8M:Z9PKRqU+xpQNPNF+3t69ZyVvUOH8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7841c424eaa7365a5c6b9fa3865e4d3c_JaffaCakes118

Files

7841c424eaa7365a5c6b9fa3865e4d3c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Adrian1980\documents\visual studio 2010\Projects\losecontrol\losecontrol\obj\x86\Release\losecontrol.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 166B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 286KB - Virtual size: 286KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ