d2d9349afe7ac1d0293795b2b97afc36_JaffaCakes118 | Triage

Sharing

General

Target

d2d9349afe7ac1d0293795b2b97afc36_JaffaCakes118
Size

404KB
MD5

d2d9349afe7ac1d0293795b2b97afc36
SHA1

14c8916f867bb0a99f6674b29ffa030a867f4ed5
SHA256

1ba3f9ed3d2cf3a17346710c51932fbe4c13f6c1d10a1cf58eb8dca1c17f059b
SHA512

90a90bc1a4a89f9ce28e55b5bf909b101b9edf9788a0a39e01f5aedb8722c47e2cbb3eac399b8ccf0b46a1cc102fdede31c5118c10b7bffb0103697bd233c626
SSDEEP

6144:Z8UFyCUWRaAepU/EI9ssMmwX1iIbEybduPoItkM0zX5:Z8+4AN/EI9ssM3lbsPOM0zp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d2d9349afe7ac1d0293795b2b97afc36_JaffaCakes118

Files

d2d9349afe7ac1d0293795b2b97afc36_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\BackStreet.UNKOWN\Desktop\MoDiFiEd\ScanTime Crypter\1 scantime crypter stub\1 scantime crypter stub\obj\Debug\Joker.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 198B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ