dacb6ac860c87868d55a6adf49744931_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dacb6ac860c87868d55a6adf49744931_JaffaCakes118
Size

1.6MB
MD5

dacb6ac860c87868d55a6adf49744931
SHA1

959184e2ffa78245fde4de2bfb5d7f76a0ad9eac
SHA256

300605ad5a9f6dc6bb5f4c273bb20e79276d60cb46da7e1eb42d0bd0a515ffc7
SHA512

3349ae9c1c2713a2150422074969882291be665d43967cbb0dc56bfdc0528affeb78c603d33dd294545b4bd4055e52e34dacdad0897168d36819f1b7b34fe22c
SSDEEP

24576:4j88RteaSruoS4NynPHmEEFL0grvI8w+ZHoW0grvI8w+ZHo9c:Y3alynP2FLtIeHhtIeHX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dacb6ac860c87868d55a6adf49744931_JaffaCakes118

Files

dacb6ac860c87868d55a6adf49744931_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\nathu\Local Settings\Application Data\Temporary Projects\asd98xc7v98cx7v9s8udfdshfklcxjviodsfu\obj\Release\asd98xc7v98cx7v9s8udfdshfklcxjviodsfu.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 216KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 227B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ