0b41bfe23d015d2c114f2bae851d8528_JaffaCakes118 | Triage

Sharing

General

Target

0b41bfe23d015d2c114f2bae851d8528_JaffaCakes118
Size

952KB
MD5

0b41bfe23d015d2c114f2bae851d8528
SHA1

e6b2f01a928e27c5c83b6290b2f39660f45ea130
SHA256

3c76d24c83b79cb7426712fd591db33498e37a4ebbe109f300c6afb5c797e8b7
SHA512

d9254ecc92125d5b88863e5685280eaf6141f119b422b7b5acb5e682163c5d3ab84c84471b711e3ba19b6d6bd25b8ada24f2c204f44843c116c418b3f1e8dc53
SSDEEP

12288:zHu0Rx+i82Jxiw4jPCVSRVCgNYC4YyFczHk8kxuujl:zOOJx/4jxRQgNYC4BFczHk8kxdl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b41bfe23d015d2c114f2bae851d8528_JaffaCakes118

Files

0b41bfe23d015d2c114f2bae851d8528_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Administrator\Desktop\Client\Temp\WdzKbDGkQz\src\obj\x86\Debug\Arr.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 876KB - Virtual size: 876KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ