a5f35b001e314db7767f0f27ff394cb7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a5f35b001e314db7767f0f27ff394cb7_JaffaCakes118
Size

575KB
MD5

a5f35b001e314db7767f0f27ff394cb7
SHA1

6771f412dfc31b8a20ce07f777bd1d4b9af688bb
SHA256

8df4deda16be8ab4d1607ae535f1a08a06ae83819d05b2745a590df3a5d0c448
SHA512

fe98077980d892caefdd3dd1453e8db73530c4f8a2a17cad4f038a939b922401d055bf824e1cd0975114d56aa4ef33b08b25e9604b2531472cb3e45c847d61a4
SSDEEP

12288:nEwZdm7cRF0rAZ6AnenZdi7cRF0rAZ6A:nxZY7cRF2AInZI7cRF2A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5f35b001e314db7767f0f27ff394cb7_JaffaCakes118

Files

a5f35b001e314db7767f0f27ff394cb7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Administrator\Desktop\XtremeInc Theme\SubSpace Theme\obj\x86\Debug\AnGrY BiRdS CrYptEr v0.1.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 325KB - Virtual size: 324KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 248KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ