efda6b2371cf8854374dd4fce6ef8bce_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

efda6b2371cf8854374dd4fce6ef8bce_JaffaCakes118
Size

396KB
MD5

efda6b2371cf8854374dd4fce6ef8bce
SHA1

62cb27433bb5c9fd72acd9d2470436a1fb02f7af
SHA256

6d0c7b015e67dd7413169f055dedddc0ee00f4cfcb96f66c3d01b77940397a9b
SHA512

a674ea3907e5ceeba97ef01edb4349d79c1904612cd485493a4d129fd393072b873738a26dbd59f71e60ffb365152a7d23d4c20b7f4be70536219e146e8d06a4
SSDEEP

6144:YagzIyinLORpO/GVXqcRC0ek/myhRgaMwsFJisSxSTAI7:YagzIFf/0XqgC0eDagaLxwd7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
efda6b2371cf8854374dd4fce6ef8bce_JaffaCakes118

Files

efda6b2371cf8854374dd4fce6ef8bce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\Owner\Desktop\Trennie\obj\Debug\Microsoft.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 384KB - Virtual size: 383KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ