a13775b6651451dfa33ec2a108c5bded_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a13775b6651451dfa33ec2a108c5bded_JaffaCakes118
Size

486KB
MD5

a13775b6651451dfa33ec2a108c5bded
SHA1

dd3ebaff13aace19c8984336e0c5d1b2e3dfbff0
SHA256

c19b80596722785598b89734f1e09780c11a25ed63eebe6626753132933f3c6c
SHA512

530f84f97502689dbc393b24d103799753f8fac6e8dae37b8cf3d238c52bc88940ba87aa73d5e3fc316a60b3e80ab0ebb81596c415c890c7e9c3d1e12c385b2a
SSDEEP

12288:1WW19FNSObUA980GV41rihTHR7IbtL260Fi4IG:1WmOA9dUR7IR260U1G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a13775b6651451dfa33ec2a108c5bded_JaffaCakes118

Files

a13775b6651451dfa33ec2a108c5bded_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\Owner\Desktop\socket learning\crypter\crypter\WindowsApplication1\obj\Release\Stub.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 372KB - Virtual size: 371KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 165B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ