bee3bffef7a521b4f577b697f855bacd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bee3bffef7a521b4f577b697f855bacd_JaffaCakes118
Size

928KB
MD5

bee3bffef7a521b4f577b697f855bacd
SHA1

59bf986d66033d052c49cb79762c2f5c982c0e2f
SHA256

461fc6c36ff1a0ca781b4a28d7f885ebcd8b23a9f2fa1009ec0f347a9bcb1384
SHA512

ee089619acb8e3a3b7d18568045d2d4f4c4ec52e1ac65980b76ee62993fb9d6c6490d81fd9e13700fb0577042e4f9987243a31e4e2109ab36623fad90c02bed7
SSDEEP

12288:L2U0HJzbB5MzIZbE9xK5nujC6ApLBvhVgXgiPFUjdDj9LHL7eQyjFg8gFdRqh8:bwBM241wQ4dDj9+QyJRid+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bee3bffef7a521b4f577b697f855bacd_JaffaCakes118

Files

bee3bffef7a521b4f577b697f855bacd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Documents and Settings\Administrateur\Bureau\yess.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 676KB - Virtual size: 675KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 244KB - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ