c933db955169444e34ff28eb1b5e70f1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c933db955169444e34ff28eb1b5e70f1_JaffaCakes118
Size

86KB
MD5

c933db955169444e34ff28eb1b5e70f1
SHA1

65be5c4193a939ee95633d58e07b1c609bee5281
SHA256

70d871b1ab6b013ab493d91061a3f7226101075f5fd20bb15eb2290bd57f4674
SHA512

51c2c8ad42efb266308653288e28eb80480d9e007119329a8dc4dfcbc1a1801515929501d8dd9b171963709dd317e6ac1a1db8166d14c88a1a1ff7ff7764c458
SSDEEP

1536:09vM2fvdMISJP3o5oAEPCL0z+fD4B6Sr02/N7U:0NM23yrJwMPt/gSr02/dU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c933db955169444e34ff28eb1b5e70f1_JaffaCakes118

Files

c933db955169444e34ff28eb1b5e70f1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Sander\AppData\Local\Temporary Projects\stub2\obj\x86\Debug\stub2.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 131B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ