015b0f975c460c2a496935d9e613a9f5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

015b0f975c460c2a496935d9e613a9f5_JaffaCakes118
Size

1.2MB
MD5

015b0f975c460c2a496935d9e613a9f5
SHA1

8f75fcb3e912e41922f31bf43a871e2925202216
SHA256

c1718c922b5a72c04e38e29033234298294cb440e1267b2c05afb6ed3f8fd946
SHA512

bfee53eda82e0d0c7408b08c681276b60c7b1c1743bd5a059ab63e098f246d14376b64c2c383397b12291a440ce689bdcec3fe138ecd06e2cc5a5e3b50e0c624
SSDEEP

12288:wV28fV2beETBY2cJBm7vi/mFkw1gMV1/O4or+JhFYkpFEs641rFQ60gDpo+3:lY2r7AmFkYTVdOj+rF7LEslFQ6fqM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
015b0f975c460c2a496935d9e613a9f5_JaffaCakes118

Files

015b0f975c460c2a496935d9e613a9f5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Dokumente und Einstellungen\Administrator\Desktop\JmdimZnJumGitsGAl\Anuschka 2.0\obj\Debug\hhbGWmcMHiDYLdhAE.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ