de962883ec0ec775625689f2f41c2309_JaffaCakes118 | Triage

Sharing

General

Target

de962883ec0ec775625689f2f41c2309_JaffaCakes118
Size

211KB
MD5

de962883ec0ec775625689f2f41c2309
SHA1

9a42a19832f098593effec01ceadc40c8e205637
SHA256

fca13cb5c4c31c3f391494df42119c65e489e6215b56fd0daf1cc7fcd4653e77
SHA512

e1cdc7e5317f04599fa886e8791f4a631f1d708212cbe3b176ce1723dc326601c0666eb4209f3321e44bec961bdb28b9358f75e83d81f4ec546a2324641239d1
SSDEEP

3072:Oi8o8NBVDvR6L/ZsnQfgzHThipban3hp+YqQj3K:P81FyanAl835j3K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de962883ec0ec775625689f2f41c2309_JaffaCakes118

Files

de962883ec0ec775625689f2f41c2309_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\BackStreet.UNKOWN\Desktop\MoDiFiEd\ScanTime Crypter\1 scantime crypter stub\1 scantime crypter stub\obj\Debug\Joker.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 198B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ