8a114222a8d9b54f39b4d9e030827371_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8a114222a8d9b54f39b4d9e030827371_JaffaCakes118
Size

19KB
MD5

8a114222a8d9b54f39b4d9e030827371
SHA1

189c7eff5f543f5450ed9fc80930c5ba29ec7e02
SHA256

1e087fec120b7793c49f9db9d1438f3cba04a12a90037e94d9b2e9b1b46fd30a
SHA512

b58a728e337282ba28e326975015dccc6b886afcc7c00d4b226a362ad814c347c0b47e84551aab4ca2842f771f860be6f5526b533825eb519a9d9027417c208d
SSDEEP

384:DRliTQqz6gAyCKmWayJLk245Ua3X3DXHKMnT6E9d09dW60:Dzi8qPA1uNC9d0l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a114222a8d9b54f39b4d9e030827371_JaffaCakes118

Files

8a114222a8d9b54f39b4d9e030827371_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Mr.Panda\Desktop\VB PROGRAMS\One click CA starter\One click CA starter\obj\x86\Debug\One click CA starter.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 171B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ