95d45d3a3d35a8a5d88b456cce507b1e_JaffaCakes118 | Triage

Sharing

General

Target

95d45d3a3d35a8a5d88b456cce507b1e_JaffaCakes118
Size

914KB
MD5

95d45d3a3d35a8a5d88b456cce507b1e
SHA1

bd3f45c576a787c7409f7ff99d32ea2f107efce6
SHA256

10e19026d2915ab22ac866b1577f14179093b8f962f9921912698fa780b47fd4
SHA512

2cef32971b8ec9265d2ea1bca99e06fc10ac5275b2d389754fc7c6d68b47691d03006e7f58ec3c289a8acb2d5c95693959ffcee4c7ebcdd0c6e94b91bcfc9929
SSDEEP

24576:qCjo0Fnj6cjRL7GQdVCW8XMDZope7tfsutFOi0gH:Vld7FRxfj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
95d45d3a3d35a8a5d88b456cce507b1e_JaffaCakes118

Files

95d45d3a3d35a8a5d88b456cce507b1e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\1337\Bureau\1.8.8 src\bb1\bb1\obj\Release\System.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 877KB - Virtual size: 877KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ