fdae32cf3b26cdf4e5014bfe470b1e60_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fdae32cf3b26cdf4e5014bfe470b1e60_JaffaCakes118
Size

184KB
MD5

fdae32cf3b26cdf4e5014bfe470b1e60
SHA1

e20444c3a5bba3ff137e9623bbf0363f63cb4bf7
SHA256

ddd0684fe28ebe37c001d470029e76197779846b635f93e5bf71d405a5aff821
SHA512

56f122afe74745f504d24aee7d75c68783d5e827a60ac907a8feea85db39d7da4c9d0214ae884bf56e15d8fc0e0df534a1a85c1b6ca94d2c056114637d30fafe
SSDEEP

3072:DejlLAUr08Vi7SmKWoWG7RRETY9MVrrBVJQ9d17SAORUDzazZ:1Q7E93u9GTM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fdae32cf3b26cdf4e5014bfe470b1e60_JaffaCakes118

Files

fdae32cf3b26cdf4e5014bfe470b1e60_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\gcc\Documents\Visual Studio 2010\Projects\Unknown Logger V Public\Keylogger GUI\obj\x86\Debug\Unknown.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 170KB - Virtual size: 170KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 167B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ