a346aa210dc472f8df2d8c6cfd4137a7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a346aa210dc472f8df2d8c6cfd4137a7_JaffaCakes118
Size

253KB
MD5

a346aa210dc472f8df2d8c6cfd4137a7
SHA1

2bea0d85f6e46bfa91883d91143676f2de3d89e9
SHA256

d1b5236e0b77e3e4aaa481b55759c06d21d73967a48b5e271e1c3e5c009684af
SHA512

d9fc87f952884fa10955914ce67748e0b42e22f9ea5a8e3107f83729d954ba3812ae74a7e862f2a6af356aa4a1b62ad421539d64e68398c01032767e0d7af776
SSDEEP

6144:Zev1vGMAY2XwYCelEuW0TCjlKY2KN6ZqJeTFfkPGG976+:Zs1vnYdi00lR2dqJuFfkP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a346aa210dc472f8df2d8c6cfd4137a7_JaffaCakes118

Files

a346aa210dc472f8df2d8c6cfd4137a7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Thi\Desktop\Sources vb.net\Boninha's Logger\Bona's logger\obj\Debug\Ramatis professias planeta.pps.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 247KB - Virtual size: 247KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ