875d0bfbc947a0c635cbd8d43ff38815_JaffaCakes118 | Triage

Sharing

General

Target

875d0bfbc947a0c635cbd8d43ff38815_JaffaCakes118
Size

199KB
MD5

875d0bfbc947a0c635cbd8d43ff38815
SHA1

35f951db1d14919ed6874ed0d1586b2fd459c034
SHA256

78da202ab84132c2a6a64a8f0f782605981e3de736a90867b75f86af00890f8a
SHA512

f4d52c30c09fb53f9c2a9dfeb9a86f894a00cb7bb44249d000d7b11fba6398a78774224d2a35ead7736764fc792c778f0c087381efaea76ee114df5595f51d54
SSDEEP

3072:HrkNR/QM1cl9QMBMi8Ng4uOVqA49YSEzO8arg8MTvryrNEg8qUrdgzFs9qKD4P9c:L8RoM1iCuMjrry5s9rD4Ved

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
875d0bfbc947a0c635cbd8d43ff38815_JaffaCakes118

Files

875d0bfbc947a0c635cbd8d43ff38815_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Ahmad\Desktop\nn3n.pdb

Imports

mscoree

_CorExeMain

Sections

.rsrc
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 153KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ