afa2124fa22a7100f7e83df9d9090a4b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

afa2124fa22a7100f7e83df9d9090a4b_JaffaCakes118
Size

76KB
MD5

afa2124fa22a7100f7e83df9d9090a4b
SHA1

28c4f9d70cf5d4982eab51261210a24817584fba
SHA256

dc9b21da1f65f3662b157a5358a1143e22cb6a0f16f5df4561670ce21e019967
SHA512

68d44f8efac2c6fb1f5a08a16ff2ef3ae689405145a02e0f65c33cd9e854d645230f523320d789776d71d9a68e81b420629bd5d74d89144b1d701738c43110b5
SSDEEP

1536:hRmDpSqMXCiYwHl1vC6nqp0+14ClXoh1XFt3ui3vzO:j2puXCiYCl1q6YfpXoh1XFteR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
afa2124fa22a7100f7e83df9d9090a4b_JaffaCakes118

Files

afa2124fa22a7100f7e83df9d9090a4b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\ХРЕНЬ\программы\deposit\FileLoader2\DepositDownloader\obj\Debug\svchost.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ