a7897fb0e0ef22eea0093d0c20bf7b62_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a7897fb0e0ef22eea0093d0c20bf7b62_JaffaCakes118
Size

24KB
MD5

a7897fb0e0ef22eea0093d0c20bf7b62
SHA1

9a3c7410b53b60401b81644aea04723871fe0fdb
SHA256

5ba5560168e173f705a8a82e12fab568eda471f9c3e5b2b62dd40c741b8df5c2
SHA512

6e7f31d97c20d583de03066a3bfa2060b65ed071b3e331192baa2b3ffe5083135ecc90567801ec7544c3efc5bda8e6d6c85c1b49837db44d934c678a8bd9e87d
SSDEEP

384:FCzDDHfYrMeM3Wwv/siqozqSWedmfQc+qBxkXVTFiHoB33nrLncq97Uh+7+LjYNn:FqvYrM5vz52SDmfQc+OxEPiHolJ97Ua9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/BF3 Updated VIP Hack as of 25.2.12 www.mpgh.net.exe

Files

a7897fb0e0ef22eea0093d0c20bf7b62_JaffaCakes118
.rar
BF3 Updated VIP Hack as of 25.2.12 www.mpgh.net.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1004B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ