2dff5cdea9d90a2a83b5b8a159e6e0b4_JaffaCakes118 | Triage

Sharing

General

Target

2dff5cdea9d90a2a83b5b8a159e6e0b4_JaffaCakes118
Size

336KB
MD5

2dff5cdea9d90a2a83b5b8a159e6e0b4
SHA1

cb6278f8de6a9768d2629553c9b67d4667b5a84a
SHA256

a225747e274ee182bb5a9e79be93ed79f51fa08153d31ec7afa8576d801443a6
SHA512

1d0e1109523acd5f33000c5cbab6d0d8f4c4d018da7660c1c2433cd214960d9eb50c18562d1920920d9f857f6ab82bfd8b07ffe61717f4183e9043e325c06d33
SSDEEP

3072:hk7Bz6eCliN0semDEZJeU6laJn2N1QJ5CNuiKU09FXEOD94Sln3+PGZ4EloAu2v:hk9vgc0sexx6EJn81bK3wOD9z+GpWA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2dff5cdea9d90a2a83b5b8a159e6e0b4_JaffaCakes118

Files

2dff5cdea9d90a2a83b5b8a159e6e0b4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\ercan\Documents\Visual Studio 2010\Projects\mail bomber\mail bomber\obj\x86\Debug\mail bomber.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 331KB - Virtual size: 331KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 159B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ