2e7daa684422ec801f1456a8278b28e8_JaffaCakes118 | Triage

Sharing

General

Target

2e7daa684422ec801f1456a8278b28e8_JaffaCakes118
Size

55KB
MD5

2e7daa684422ec801f1456a8278b28e8
SHA1

375a1e51e8a4171a15c9c1a3d215497efcb6bd8b
SHA256

64c6c2c3e29a17d4ebe3835c302d82b363f544a6244cf44e16f64bf82494eb59
SHA512

1915a981f1ba7f681b7bebe3d4bd983cc38a92b780a04fcf02d2bfcfe0373e7969be974b51f18ff4b892fc3d14aaaf64723968453b609112aeefc89383a31a21
SSDEEP

768:5aW710mtOV6i1T3yLKcr8oHfssft46Ieo133C0jBQxR2G:YoJtg6AjyVrhHfvtZw1Htm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e7daa684422ec801f1456a8278b28e8_JaffaCakes118

Files

2e7daa684422ec801f1456a8278b28e8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Dokumente und Einstellungen\Olga\Eigene Dateien\Visual Studio 2008\Projects\stubs\stubs\obj\Release\stub.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ