cfc358db81bfeeb8fa24071cb60ddd18_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cfc358db81bfeeb8fa24071cb60ddd18_JaffaCakes118
Size

362KB
MD5

cfc358db81bfeeb8fa24071cb60ddd18
SHA1

93ee70fc97936e37d586c2011d1e57c1b197c893
SHA256

9678cb34088f212224a3997c2f558b0827ee4e562d08be52b37ab7d6cefe7ea2
SHA512

ec8ea3d6ea37a45398ad53a3af7a2e412bb3cdfa4d1ec15a71e8726ce35dae383e9d02404d7706a5decf73f5257fc33c6e7a3664168a3e9219ec1bace5541fcb
SSDEEP

6144:a1jUca5+gfpUOifCtaJppYWH/JskNAVNeN584eeD14ootXaddR:a1Yco+gunfCEAWfykqVNeN24eM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cfc358db81bfeeb8fa24071cb60ddd18_JaffaCakes118

Files

cfc358db81bfeeb8fa24071cb60ddd18_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\Work Area\Drops Logger By Rapid\Drops Logger By Rapid\Stub\Stub\obj\Debug\Stub.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 357KB - Virtual size: 357KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 138B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ