9660c12561905433a5085b968635b030_JaffaCakes118 | Triage

Sharing

General

Target

9660c12561905433a5085b968635b030_JaffaCakes118
Size

452KB
MD5

9660c12561905433a5085b968635b030
SHA1

e3a52b5f90c7aebd36b874e1be3da3a0035b91eb
SHA256

436e856ed4fed37136d0b12f576587a685946e8444905b519159e1792d00b66f
SHA512

c1b7f7ae2f86a80f03659a3c3314779d974435211c6674c2c62ce1ff65f7ab751925e4e5036df429b0233f7817d136c9cfe6617faf95ac12ce1b752abac0908d
SSDEEP

6144:7Q7Jw8vaCPV/ZCAj8b/xJj4DoIBXJwj7YXSB+iloKPtL79gOjJUBHcCQQ+sCJSG9:M7JwFA8xh4hBgYXSNx1faKWsJSo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9660c12561905433a5085b968635b030_JaffaCakes118

Files

9660c12561905433a5085b968635b030_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Stefan\Desktop\greger\Crypter\Stub\Stub\obj\Release\sup.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 121B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 397KB - Virtual size: 397KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ