2c06a70155f3169567155c538213936f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c06a70155f3169567155c538213936f_JaffaCakes118
Size

150KB
MD5

2c06a70155f3169567155c538213936f
SHA1

208f06a68e08d69536e50f118318bc9b9305becd
SHA256

bcff49df56907acdd71445a4fcbd2b71bcae8ac5c34a6fb4797def97fa815f00
SHA512

3e26012085e516e5cb8a7c6ebbdd156f6de54a2064a960177a97201ccad06d4b68bac24c1d12e04c44eae97aa85ad809d61a5141484aebb52a45b1fc12103ea6
SSDEEP

3072:WMfbSoc6ee7cYYfbU5cMog+Y/YO6elWDUsLypqWwgZdhJuX6MMr9me6bHo8jIOtH:WMfbSoc6ee7cYmbqcMogVwUsaqWwGr9U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c06a70155f3169567155c538213936f_JaffaCakes118

Files

2c06a70155f3169567155c538213936f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Development\DriversHQ\DriverDetective\DriverDetective\Client.InstallAvg\obj\Debug\InstallAvg.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ