b569685f14741be9b7920905a4ca434e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b569685f14741be9b7920905a4ca434e_JaffaCakes118
Size

152KB
MD5

b569685f14741be9b7920905a4ca434e
SHA1

9f907438bdccb0bf12db0f794e34c7ed6abc08ac
SHA256

ec36e32f62ef34a5285947dab2b45465b50b67444cd5b64fda385507e831bd7b
SHA512

6116101d1e0fd48d70118143134e6fd9fd89e99734a797152f57156ef92544792a9d5a5d3ec7d264594de4c111c76893cc6ea58713aea4f19075843a44a78419
SSDEEP

1536:0LqoyAblHtmWnMV21oojmMBzqNhrZl2vWLjp8C1+sMLxl76oXnR4/ggI1hjHlddg:jIHtznT1ooKMBYT1JWleiR4/P8zdo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b569685f14741be9b7920905a4ca434e_JaffaCakes118

Files

b569685f14741be9b7920905a4ca434e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\HP\AppData\Local\Temp\2dchowoj.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 4KB - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ