40093a38d02b03d3eb5bda650ecceb84_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40093a38d02b03d3eb5bda650ecceb84_JaffaCakes118
Size

795KB
MD5

40093a38d02b03d3eb5bda650ecceb84
SHA1

541ea220feeac1bef9e6e08812fe0957da58f946
SHA256

74a58246d9904c377cec2ee3b13007f3e71403b6173522f365229c90cae7e0fb
SHA512

b11164a3ca63061119a5f80b915fd872f0280af26080d0cb6baed69933552fff685822e05c8dac5cf9c3821a9e1943d7da333c971d2e27aa3941b2a5233d52b0
SSDEEP

12288:OD1vmjxz/72P7oD4oymraxZ9a5JXXUXYtF0nKwWlBhFX3sFJ44aYwuFNLOGs6iOw:bj88RtGaHHSYtynULOJ44dNry+a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40093a38d02b03d3eb5bda650ecceb84_JaffaCakes118

Files

40093a38d02b03d3eb5bda650ecceb84_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\nathu\Local Settings\Application Data\Temporary Projects\asd98xc7v98cx7v9s8udfdshfklcxjviodsfu\obj\Release\asd98xc7v98cx7v9s8udfdshfklcxjviodsfu.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 216KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 227B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 576KB - Virtual size: 576KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ