8d52ca1f90a9b6e9eb69cb0b9a6b2392_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8d52ca1f90a9b6e9eb69cb0b9a6b2392_JaffaCakes118
Size

54KB
MD5

8d52ca1f90a9b6e9eb69cb0b9a6b2392
SHA1

5afb7edd1226db92e359470853d9a28d20a63ac5
SHA256

7a4bc270a69097e91b856344cb089fcd5d944dd583d2e33177782b30f34c5d3f
SHA512

09a44c39fa78b3fc20f04fa10eb76135bc1c6d923cd7e0f0bdbcba87d67a1a325829d001f0e097295b23f1e6cc8b9eb3ada05aee8966803d69adcbdf00258ae6
SSDEEP

768:gEjYEtITiiUbs45a3TTxbSkMfISXZqjV/AKd4JeOQ9/sod:JjTDFI40jfwIiYjpAlJeOQ9/rd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8d52ca1f90a9b6e9eb69cb0b9a6b2392_JaffaCakes118

Files

8d52ca1f90a9b6e9eb69cb0b9a6b2392_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\IntegrationDev\provs\createres\createres.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ