ce7933506f2d9e9bd6ed66a56673e183_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ce7933506f2d9e9bd6ed66a56673e183_JaffaCakes118
Size

87KB
MD5

ce7933506f2d9e9bd6ed66a56673e183
SHA1

257f29c03c651ca9e5632dc93fd7ccd5d2d785a1
SHA256

7ccc2398068a1637bbe3e0f3ca294c3c16bc3c897e039ce88bb61c98e40e0213
SHA512

2f8c7c06eb35530e8583fc44ebb324318149e2486988f26309d7cb601988991aaf3ff962c9d14a09dba8077eded93e871f51455b8337e1ee0c55aebbcbbe92c7
SSDEEP

1536:R9xSx5+Aoe3pHCKURMXPp/P1Tqw4XlWuJ0MisqAsA0GpefhBNTQlxytfDHbVT5dE:NzeAKnLq9UumMHqVA03fh/H5/yVz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce7933506f2d9e9bd6ed66a56673e183_JaffaCakes118

Files

ce7933506f2d9e9bd6ed66a56673e183_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Chill\Desktop\Managed\Managed\obj\x86\Release\Managed.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ