bce387d0692cd512f99e4fac0353ae9c_JaffaCakes118 | Triage

Sharing

General

Target

bce387d0692cd512f99e4fac0353ae9c_JaffaCakes118
Size

211KB
MD5

bce387d0692cd512f99e4fac0353ae9c
SHA1

0ce2d9d72888d87f7a4e4058f90061f96ca3d79f
SHA256

0951946c0ad67c63a44df606d707e522ec04bf8d828cdbb0039f074727c9b553
SHA512

d43402f807f6bdbccd5a987ab133e3f3cc0fd3caa4de71aa4d39aa38fffc988cfd783974160151d09e485123c24aa1052adbb4a78bb469ae3b6d13e1501482b8
SSDEEP

3072:lyEpMnRPrLmEpMLRPrL3EpMoRPrL8EpMFRPrLVEpMGRPrL5j9EX4im5MC9EXximq:Pr2aFsMfXdtHoZ2dKxZLzjcJt3rRzjm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bce387d0692cd512f99e4fac0353ae9c_JaffaCakes118

Files

bce387d0692cd512f99e4fac0353ae9c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Revalation\Desktop\Mail Bomber\Mail Bomber\obj\Debug\Revalation Mail Bomber.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 141B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ