0666423a8d1c41a258c31c97d5c87c92_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0666423a8d1c41a258c31c97d5c87c92_JaffaCakes118
Size

579KB
MD5

0666423a8d1c41a258c31c97d5c87c92
SHA1

e0aaae95ed4c5a4d1a8a34e725d4790739d6d99a
SHA256

aef8d3f0c1fd4c8160d7585e7ba0e4f650d79da47c79649dbaf77bd346b49143
SHA512

418ab4551e6f1b1bbae3a0b171e2cbfcac33677bc8328b8dbbb4a9d93d6d0bcc106994caed965988ecd6b39e6799d87a684418d9a375fb83d29ad9a53770e6ca
SSDEEP

3072:kAnnnnnnnnnnnnnnnnttKR7EEusaY89j+sEoyV5/hH1Ar:k2gR7Tusa99j+qou

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0666423a8d1c41a258c31c97d5c87c92_JaffaCakes118

Files

0666423a8d1c41a258c31c97d5c87c92_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Axel Puntke\Documents\Visual Studio 2008\Projects\Metin2_Patcher_XP_v1.2\Metin2_Patcher_XP\obj\Release\Metin2_Patcher_v1.2.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 311KB - Virtual size: 310KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 188B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 266KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ