ae89d01abc56004ca9f72b0e3545f74e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ae89d01abc56004ca9f72b0e3545f74e_JaffaCakes118
Size

388KB
MD5

ae89d01abc56004ca9f72b0e3545f74e
SHA1

39361ae1f241f644d573f0721d3e33bc87711975
SHA256

1d0f851dd98cce5964c6b72ff7d27b1b2d516d6bc4c242aee8d7a45106eff6de
SHA512

0c6a816e803ebed28ff9814f9e2bd54c38dffc35520b65b9b2423c0ca4bfdf5a2b098954fc1b6a6bc467829687c7c37290e274f3c7c3a54247422c4c34739813
SSDEEP

6144:yyWE7I04UgeQp8sKseMgjkDWClVQfpR6FkwQhSbLs4Duf6snbnvnnvHXE/o:s+P4UgeQCxs4dB+FkwQ2D+6CrnnfXE/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ae89d01abc56004ca9f72b0e3545f74e_JaffaCakes118

Files

ae89d01abc56004ca9f72b0e3545f74e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\Sebastian\Moje dokumenty\Visual Studio 2008\Projects\Injector By Sebulka v2\Injector By Sebulka v2\obj\Release\Injector By Sebulka v3.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 379KB - Virtual size: 378KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ