c1e51fc2b13802dd00eca95645b21095_JaffaCakes118 | Triage

Sharing

General

Target

c1e51fc2b13802dd00eca95645b21095_JaffaCakes118
Size

13KB
MD5

c1e51fc2b13802dd00eca95645b21095
SHA1

4119df1d3966c010a9e52060f7d864bd02240396
SHA256

4a7f067c4e2b55a93277ca7c385073f01b5a957ecd6503a0bfd091f43cfd06b5
SHA512

e05f7f9cdb5e5ffa2b7b1d2fbbed022553d6bf801d7efdd9e6a114715e57a510ac372110c72d101ced02f5189af91c77d7598c8ac6b39c77a84430f281b6774c
SSDEEP

192:I3c7mDKpB1X67VLqX5RjNca5Tl5tT9u3b4LQV:IEX6pLqXjjq+lrk3kLQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c1e51fc2b13802dd00eca95645b21095_JaffaCakes118

Files

c1e51fc2b13802dd00eca95645b21095_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\admin\source\repos\System\obj\Release\System.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ