d155ad5bfd538e2e2a61525afb38f2b0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d155ad5bfd538e2e2a61525afb38f2b0_JaffaCakes118
Size

254KB
MD5

d155ad5bfd538e2e2a61525afb38f2b0
SHA1

1048eae21777a8928a6966c039fecd55a2a03c71
SHA256

e22731e25e08cc4a31887ddf2f59d6660b4ddbf3d75ecb7e8a8d395147909401
SHA512

2cc4b9be068301e8982681e9919fff6e33f295af41a64b3541f541ba1ebda4b1f83d09818893746ec995e2c22107935d6b59509f75dddafa69cb4bce84f6621f
SSDEEP

6144:pjd3fc3gw3r1sx6EG+fE5zjd3fc3gw3r1sx6EG6f:px30glZGeE5zx30glZG6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d155ad5bfd538e2e2a61525afb38f2b0_JaffaCakes118

Files

d155ad5bfd538e2e2a61525afb38f2b0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\Maddalena\Desktop\WindowsApplication1\WindowsApplication1\obj\Release\SpazInjector v2.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 134KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ