bc597990a09c527b2442d49d583156c9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc597990a09c527b2442d49d583156c9_JaffaCakes118
Size

7KB
MD5

bc597990a09c527b2442d49d583156c9
SHA1

107000acec6bd067744de95a0d1d2c88f4285504
SHA256

7a5a6d16bb06e53c977bd52dd9399dbb368f2d39c3dbda156eebb2dae6fb0c4b
SHA512

f20c6cb7b6570165d6bdadbaaebd39d9f979881cae7beb96673cc8599b35df5707f37cce7cdcff0860b8489adfa28edab1fd2dd37453043da4864e2156f21611
SSDEEP

96:MD/aiIWBvFAYr9Cz9+e3+DDhnDva9pEw4YiWWMvFHLszNt:M1BC5D3+D9asw4YiWWctLW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc597990a09c527b2442d49d583156c9_JaffaCakes118

Files

bc597990a09c527b2442d49d583156c9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Amr\source\repos\Server1\Server1\obj\Debug\Server1.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ