01de98697e0b9aee8ecce4a67058e4cc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

01de98697e0b9aee8ecce4a67058e4cc_JaffaCakes118
Size

317KB
MD5

01de98697e0b9aee8ecce4a67058e4cc
SHA1

6ed9d6735e6de312948f3f48bea7434de2ff9e56
SHA256

f6ad129d0aff9f7fd33cb9cea390b0c5d72cbba7360eedc04b977eae6f70d62f
SHA512

b0bb1846520dcb247f9afa4470b112833b35bc594ec9596e2ebaafa6732439f94ae2924411384b28689ad08ea1fe8ce8a0523fba44b65127a690ec9c7c3bb99d
SSDEEP

6144:hAsj8+NioZsz7/guhMwnY3Owe0zhWXFoc5nAEA9hOO4ZbH+Yp+7:v8ow7j1eK0zhNEAEWMZbHy7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01de98697e0b9aee8ecce4a67058e4cc_JaffaCakes118

Files

01de98697e0b9aee8ecce4a67058e4cc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Dervie\Desktop\Azure AiO\cStubnew.pdb

Imports

mscoree

_CorExeMain

Sections

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ