a4dc958c512eb54f899a699fabeccb04_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a4dc958c512eb54f899a699fabeccb04_JaffaCakes118
Size

13KB
MD5

a4dc958c512eb54f899a699fabeccb04
SHA1

7bec729960a90ec8f8b99f2c0c364861a8b222aa
SHA256

dbc644c1aab8fb0066e9d095d5deba91d82f3fc33061ac7cb2e60e2b7987736b
SHA512

e5b09b1d72da64b80fc5aa06dddb450c0a91b7ad3924a4ba7578c900cbcd59f123ee7e63d73b3c7c35eb387f58fe5666df12f21eb12d7286984f9793bd0c412a
SSDEEP

384:J08Kvd7n8Obft2OfMhYfmezkQP+LLe/lekEeUxHZXeW3:k128fm69/ixp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a4dc958c512eb54f899a699fabeccb04_JaffaCakes118

Files

a4dc958c512eb54f899a699fabeccb04_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

L:\Informatyka\Soft\Dropbox\PopcornStudio\PopcornStudio\RangeGenerator\obj\x86\Debug\RangeGenerator.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ