2c886fae28caeeeb3b0ada64f64abfb9_JaffaCakes118 | Triage

Sharing

General

Target

2c886fae28caeeeb3b0ada64f64abfb9_JaffaCakes118
Size

1018KB
MD5

2c886fae28caeeeb3b0ada64f64abfb9
SHA1

5c4225d1d2ef320d6d072e37caeba0ee9adf5e4e
SHA256

383996c33dfd88054e6600a885efa9fe7215f81c35eed57dc09fd9321b1ea634
SHA512

5ee1d72608c4580961f6575921752ee4a61d6da34b3540488456e7d7178b5e78afb87df1505dba2225d042f383697f3456d3893ecae1ecaa8ef9c652036622a7
SSDEEP

12288:PXn+cIgEWHNe5Ac3QghPlwxNUuwAcBXt4gM5/Ll:PXHIgEIclkVwAcBg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c886fae28caeeeb3b0ada64f64abfb9_JaffaCakes118

Files

2c886fae28caeeeb3b0ada64f64abfb9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Administrator\Desktop\Client\Temp\keDTvfrCHC\src\obj\x86\Debug\ComDefaultInterfaceAttribu.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 942KB - Virtual size: 941KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ