ce41cc53b0b0c832f87bcba0300b6ce0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ce41cc53b0b0c832f87bcba0300b6ce0_JaffaCakes118
Size

19KB
MD5

ce41cc53b0b0c832f87bcba0300b6ce0
SHA1

24c3e38461dccc7e7fe901176dc6b12cd22efc50
SHA256

085e391025f5125a6f0c6022e64cd7f8c2e8b0bea6dce886d343acaa09a1d54b
SHA512

45999845fdc685a013f4ea397ed22df0de4be5bee872649c6920a6e9a76926192d2b909663a5a6c95430ea3ddc6b9dd9d7de0ad4305726ce0920de8e9aecfc2b
SSDEEP

384:qnuIm44fTtF+hKgrIijQsEKd4MChR2eKDKoTnxi7:qrAJ4zTdnXTnxi7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce41cc53b0b0c832f87bcba0300b6ce0_JaffaCakes118

Files

ce41cc53b0b0c832f87bcba0300b6ce0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\R3alGh0st\Desktop\fresh\svchost\svchost\obj\Release\svchost.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 125B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ