88219a5d418daa19c39e5cef2fe5ad04_JaffaCakes118 | Triage

Sharing

General

Target

88219a5d418daa19c39e5cef2fe5ad04_JaffaCakes118
Size

15KB
MD5

88219a5d418daa19c39e5cef2fe5ad04
SHA1

e300e0d519d6aad6a3f718a159d068f5bd466b9f
SHA256

cd51def2e008359073e8449c8642c7f4a4403ebae7b63ad28d7b0e0f1009d673
SHA512

d50bf118a11034c13bc5954c72f8da407777ac8492917d8e06b93279e416b9a93991918e8d0671c1d6ea6559da22ed1814f5458c4c5b0ed664fd42f245b056c4
SSDEEP

384:m/csOQ2T/LtGTYKavpTbPLtYXQrGY1zXV40zq1WCZW:ScsOfT/LzRGCza0zo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88219a5d418daa19c39e5cef2fe5ad04_JaffaCakes118

Files

88219a5d418daa19c39e5cef2fe5ad04_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\dotnet\gaiban\新版服务程序\ConsoleApplication WEB\sdb\obj\x86\Release\sdb.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ