8ac5fc2693a1601002a8c37dcefb1160_JaffaCakes118 | Triage

Sharing

General

Target

8ac5fc2693a1601002a8c37dcefb1160_JaffaCakes118
Size

725KB
MD5

8ac5fc2693a1601002a8c37dcefb1160
SHA1

ebd3463580865efea4f2f47c6fc8a059e797ab9f
SHA256

7a9d677af6f2a704a75096b5ae3190173aa206d39423ece4f02215aba6c11ec0
SHA512

363750b075c6015147f18e29b64e57e1c55938d6d086c969e03811b32c42ab377b7638e8857ccf6de7fd613de8763d21ad824cde2e22fb79d655afd8bbfc40af
SSDEEP

3072:Z9EHVu+D8YAsjFwSu2eaTUy/ZYeAfvLRwH7+D8YAsjFwSu2eaTUy/ZYeAfvY:mVu+YNsjWSu2eY+YNsjWSu2em

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ac5fc2693a1601002a8c37dcefb1160_JaffaCakes118

Files

8ac5fc2693a1601002a8c37dcefb1160_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Andre\Documents\Visual Studio 2010\Projects\VirusLauncher\VirusLauncher\obj\x86\Release\VirusLauncher.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 167B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ