956b6d2eecd46b54f9413ad7e1721749_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

956b6d2eecd46b54f9413ad7e1721749_JaffaCakes118
Size

19KB
MD5

956b6d2eecd46b54f9413ad7e1721749
SHA1

a32300a179b70fe6a2bfe0aa70c9871884f89915
SHA256

039282efd119ecd0fe2ed65289e9e242a5305ef2735a53ca2eed08479ea0a882
SHA512

a60c49df566867df10fc649fc8beb7fc97b4eb015442c30b3518d9f072953918708e562150d9efbd150114264f199a78e5371975861871b4f7a44cf2f9963230
SSDEEP

384:e8dVyNXuSAN31ahnWxcn4o4tsQ59aKDGPGAz:e8Xybi1C/GsQ59APGq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
956b6d2eecd46b54f9413ad7e1721749_JaffaCakes118

Files

956b6d2eecd46b54f9413ad7e1721749_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Administrator.DESKTOP-1MV0I40\source\repos\test3\test3\bin\Release\Dotfuscated\test3.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ