1363ae31f8c5edb9d50432e4a898c52a_JaffaCakes118 | Triage

Sharing

General

Target

1363ae31f8c5edb9d50432e4a898c52a_JaffaCakes118
Size

426KB
MD5

1363ae31f8c5edb9d50432e4a898c52a
SHA1

c5df8fb4700db98daef01de2a907c3ba8f4e9deb
SHA256

e6f0e6a5f30cc041728ea30c6dc19e4d92dd7e81c3d0fca5e123165c30018cd7
SHA512

c891385907dccc9ab4e0b08339ae9c6ec0b1ac0799d452a47143813e26cd82e59a1c52f7d1b1688e0648ed1106409985c1e75c144c9b310dcd0c0bc6514fd2c6
SSDEEP

6144:xHTLogJFehEj//D+wJhWP1gOXT5AxsLNKMDMAlcn38OxKl9x7qs9Pxcm0AUNy9rP:1TPFehEjqKiXTnEMDMVqfBdcmDBs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1363ae31f8c5edb9d50432e4a898c52a_JaffaCakes118

Files

1363ae31f8c5edb9d50432e4a898c52a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Administrator\Desktop\Epson Program\COYPOSPrinter\COYPOSPrinter\obj\Debug\COYPOSPrinter.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 423KB - Virtual size: 423KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ