a18b489542f80a6c0f226b155d230526_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a18b489542f80a6c0f226b155d230526_JaffaCakes118
Size

120KB
MD5

a18b489542f80a6c0f226b155d230526
SHA1

7478b17ba98fc8fc9c4896ded48c792869b364a0
SHA256

0f11636d3f44531c313d91ae1fdc7279cfac3e98e524ed39aca57137222dc376
SHA512

ca2eed61d5da6aa51f38109d3008682c08005bc164f46c055b2475b6e17641f906b82c00318e52c0d5eaab42caa6898a858e9e26dc517d04f3a6ba4ba934e1a7
SSDEEP

1536:kPVC5jZ6MVC5jZ6WD5WZsWjgbNvqKdDQHVC5jZ6f5:08VR8V1DBWGNSUDQH8V45

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a18b489542f80a6c0f226b155d230526_JaffaCakes118

Files

a18b489542f80a6c0f226b155d230526_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Admin\Downloads\Compressed\True2HD-Fix\True2HD\True2HD\obj\x86\Release\True2HD.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ