85f991471da2706254aaed3fb0c00bda_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

85f991471da2706254aaed3fb0c00bda_JaffaCakes118
Size

820KB
MD5

85f991471da2706254aaed3fb0c00bda
SHA1

86a18b11d2bc417a8219944f03e4347c1f091ccf
SHA256

98dd7a57af1c56f393c0439ccbb3eaa60414901f1d89390cde98e31b3a129dbf
SHA512

af85ba98ddddcbd9de2f3fca0404e12b5a6970698c7d7d2b03f8bc5643be8800645840b0e6523254ba09855c0901edccd4cce31c01bf574e5a1a95b196d66b62
SSDEEP

12288:b91P1y6ee0q15VDDGfYswo4IjFNi/OxdCwsl3ZepHSF5/Huxsorp2y2U:bj8H6v+zJxdTI3ZeJSb/HEso92Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
85f991471da2706254aaed3fb0c00bda_JaffaCakes118

Files

85f991471da2706254aaed3fb0c00bda_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Documents and Settings\Administrateur\Bureau\2.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 680KB - Virtual size: 678KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 132KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ