ebce8c726651abcb93ce8a0d53635fec_JaffaCakes118 | Triage

Sharing

General

Target

ebce8c726651abcb93ce8a0d53635fec_JaffaCakes118
Size

243KB
MD5

ebce8c726651abcb93ce8a0d53635fec
SHA1

de6171ecf7bc6563b6b43d60e7772b5e1a453611
SHA256

3db30c51ad63fd3e35fb1e9894d5bf1edad2f9bb012c2bb22a9e19167b2e62e4
SHA512

59e1abe91a0f2592ae83a05eaab3a3f230e1351280b3b2774cd39d658a700147d7ced14a18f9cfcbf4c7e79d367ee21dce58ddab0229fc2ae5deb6ca7c152969
SSDEEP

6144:gW8Y8vcsiix7rSfdORSao5mf2ejkInQVqRAJP:gLYIc1ixHNRSi2en+qCJP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ebce8c726651abcb93ce8a0d53635fec_JaffaCakes118

Files

ebce8c726651abcb93ce8a0d53635fec_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Mahmood\Desktop\Stubs\Stub\Stub\obj\x86\Debug\Stub.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ