ef9fd217db115df272a71cc43cc7cd28_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ef9fd217db115df272a71cc43cc7cd28_JaffaCakes118
Size

271KB
MD5

ef9fd217db115df272a71cc43cc7cd28
SHA1

655b001f3bbd9b98f93545d456d86a47879abc9a
SHA256

439236d6f4d8154c62278721d6c0599586bf656ae8fba084546d94b112f09c30
SHA512

332153c0d39bcf9e4fa8d87af23d32e10c3b704e5831ae3ca4b51cc9b5abc474f59c259ab216f5f13260b168d5f4568de5ded873cf9af6b0c5f91dc6b1093f3c
SSDEEP

6144:h1/x7bPS2uubjXh+eiPUalLmECex4nzXqtoC6p:hrPIu/R+egUcyPnz6SC6p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ef9fd217db115df272a71cc43cc7cd28_JaffaCakes118

Files

ef9fd217db115df272a71cc43cc7cd28_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\dell\Downloads\Compressed\تشفـير . باتش كلين\tools\tools\clean.pdb

Imports

mscoree

_CorExeMain

Sections

.RSRC
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.TEXT
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.RELOC
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ