86bc73e033739852e89fd8e5a8becc05_JaffaCakes118 | Triage

Sharing

General

Target

86bc73e033739852e89fd8e5a8becc05_JaffaCakes118
Size

28KB
MD5

86bc73e033739852e89fd8e5a8becc05
SHA1

7e36de77cee1d3c6cae43c175e4825dd89b50697
SHA256

d20993351e25fc3cc04ee1e1e2a250221c68f1163c46a81b8405febb4fc8ffdd
SHA512

b24ac959e8ff142f8c0dfbe28fef121659e5ba1c33c361d160d3305ce97c783b486ba8ee6245e654588d0568a2976dd8e439fdf9fd290f205f753ac4b9b77033
SSDEEP

384:Zpvwkwq6u9wq6u/klqoEgqSy1HaLkktTfCJVMRM7g6HtEB0Lk24jXPlGa3XEAv7f:Ylq7WCHa3Tfp96NEB42XPDe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86bc73e033739852e89fd8e5a8becc05_JaffaCakes118

Files

86bc73e033739852e89fd8e5a8becc05_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Documents and Settings\Royku\my documents\visual studio 2010\Projects\MPGH Injector\MPGH Injector\obj\x86\Debug\MPGH Injector.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 185B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ