dcefc270430b8318ac7cf520fdf8a942_JaffaCakes118 | Triage

Sharing

General

Target

dcefc270430b8318ac7cf520fdf8a942_JaffaCakes118
Size

165KB
MD5

dcefc270430b8318ac7cf520fdf8a942
SHA1

cfbc09c064facdb67d55201c368a21d4ff010302
SHA256

28b4680200147189961568fcd6e7cce3b0cd9cb42cc377119a23b63c29926788
SHA512

9792b1998479fb79f8f406e9d7708e846e12af46dd027f0c3b13035cc63ef6544d5336d7a3b114a90ad05768fb3778d16c40e5d908d4617b632481e6d00b9c80
SSDEEP

3072:k/s6StJf8YzqJj2zmIigFjaGse/iPXo5ADpw/A40wQLyFngb+lzbZh8l:uCf50O/70rW+7l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dcefc270430b8318ac7cf520fdf8a942_JaffaCakes118

Files

dcefc270430b8318ac7cf520fdf8a942_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\dell\Downloads\مجلد جديد ‫‬\التشفير\مجلد جديد ‫‬\tools\aa04.pdb

Imports

mscoree

_CorExeMain

Sections

.rsrc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 163KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ