d15205478fcae046904f3af56af47b0b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d15205478fcae046904f3af56af47b0b_JaffaCakes118
Size

150KB
MD5

d15205478fcae046904f3af56af47b0b
SHA1

836302adf812b5d9799b3521de2e44cfbbc33fe0
SHA256

2ef5f5e60a1caf03985987de9c67e59a516184f2dcca56702620102cbeeb5ffe
SHA512

d38d97e6fc5e2e4f156b9b0b9778c6a5cf2abb5de39cf24031363dcb5c4d4335e4bf67b30c14c8f02c0b562c6c05389c06966f7485be072c42e2995895342568
SSDEEP

1536:hVCIxtJ9BlTM3U3X2PKQjUho9JdZ582xlcocl9wVcl:bCIHF9M68Eo9JdZ5r/vC9qY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d15205478fcae046904f3af56af47b0b_JaffaCakes118

Files

d15205478fcae046904f3af56af47b0b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Arnav\Desktop\Rasomware2.0\Rasomware2.0\obj\Debug\Rasomware2.0.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ