1251e3f3be823f6715f7fdbfb89abd5b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1251e3f3be823f6715f7fdbfb89abd5b_JaffaCakes118
Size

221KB
MD5

1251e3f3be823f6715f7fdbfb89abd5b
SHA1

ef54e6a776614787505d62d0328b3f129f767807
SHA256

b5aa6b372122b2e8acd94eb20eb4c925e8d7079cb11829481e57c83325f33155
SHA512

6f13e4b38f95e1a1a9b75d18fedc9c74d544c945054a9d857e45e1eb685262e8e09177f15139ca5ac612d95299766121570cebb573790c960c84199c9a66ea0e
SSDEEP

6144:yNWMYVkKKjepXIYZl88MY6X3vNhVCObowtblD3ST8:+W/9IYZl8tY6HlfCOXZrSg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1251e3f3be823f6715f7fdbfb89abd5b_JaffaCakes118

Files

1251e3f3be823f6715f7fdbfb89abd5b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\Arben The Talent\My Documents\Visual Studio 2008\Projects\Power Iso 4.2 Keygen\Power Iso 4.2 Keygen\obj\Release\Power Iso 4.2 Keygen.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 215B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ