a9b3212a00d1ac8c4ad62ca119de03ed_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a9b3212a00d1ac8c4ad62ca119de03ed_JaffaCakes118
Size

167KB
MD5

a9b3212a00d1ac8c4ad62ca119de03ed
SHA1

c395aa598445cee919916763b49fd4a047d7425b
SHA256

9066ca3705052687efec7e0b6a7e79a1367d73ac5aca59929e5d6542266f8870
SHA512

3c9338a136aaa9c85610fb7f73e8c4fbb82636fac78072ecdc0bbaf50906deff21a0ba1734815c2dad11d301b6141a4b2c9baa4876327c260247c81221e81a4c
SSDEEP

3072:shkZghN+NYNxgEReSZIrlCVKrcDLBHTLfAORUZtg44TpK5:OkY4gD1TK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a9b3212a00d1ac8c4ad62ca119de03ed_JaffaCakes118

Files

a9b3212a00d1ac8c4ad62ca119de03ed_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\Jovan\My Documents\My Music\Nyc\StubPredator4.0boy\StubPredator4.0\obj\Release\Stub.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 166B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ