d59fadc5d5f4bf358530061d275e1ff0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d59fadc5d5f4bf358530061d275e1ff0_JaffaCakes118
Size

143KB
MD5

d59fadc5d5f4bf358530061d275e1ff0
SHA1

38512dd049ea8315a2d84fa6f5ae7dcff71f67e3
SHA256

a2d4e8767247511e0d518108a5ee43d6a9a32a9ac630754eb3b3627e93e2b962
SHA512

444c3e3c39f5ab00490972a70cc624eabc62e06d176aa5390934abc1a6b40242b1b7714a2fe209d1dad19a6869bf4537d8ffe7af9f5ee263e1ccd716f3395cdd
SSDEEP

1536:iSa+B/u0e2BtD1ZE6Db7/rBVd4HQSOe0VW2nU4e6hp0hLUZaQXEtCLtLIgeN4GBu:iSa+B/usBtD1+6frgnhgj0keNDrJ/p2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d59fadc5d5f4bf358530061d275e1ff0_JaffaCakes118

Files

d59fadc5d5f4bf358530061d275e1ff0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Idunno\Documents\Visual Studio 2008\Projects\Stub\Stub\obj\Release\Stub.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 137B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ