a2c17b071a468132bc78d897ff6c0521_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2c17b071a468132bc78d897ff6c0521_JaffaCakes118
Size

462KB
MD5

a2c17b071a468132bc78d897ff6c0521
SHA1

fd264304171fd00b20e0069522d31dd21c92e7bb
SHA256

71abe024015f3f2c3c79b05241ad3a805b0dc20923be8f4dba154e4cf19fc88e
SHA512

c5c0bdc8aed6a4552de931d7235ae3fbc823c4eaabb97f019b2a52ea332543809de6f45db8e13801c0f464f1062a7d5628fe8b901358c80a8b0277e9ad181c4b
SSDEEP

12288:iYMzJCKcF82OtRIod6icP8Delg7examJ61WEvZiDMFSRWW:6tCKcFpOEglg8DelgaxammKoeW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2c17b071a468132bc78d897ff6c0521_JaffaCakes118

Files

a2c17b071a468132bc78d897ff6c0521_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\dabdoub\Desktop\DZ--DZ\T@m mario S. 2012\obj\Debug\winrar.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 445KB - Virtual size: 444KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ