428e1bbe69a734be5ffd5d126f607458_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

428e1bbe69a734be5ffd5d126f607458_JaffaCakes118
Size

28KB
MD5

428e1bbe69a734be5ffd5d126f607458
SHA1

4407d58fadb187707f68631cea7e7e6115de5466
SHA256

a3a2a02113bb4ee711e2e79d750963917998eeb51bd657df1da93c350e57d1a6
SHA512

abd4978d8322d036efe3a6ce1a2b370bca8ebf9c59c48600970cf41b93e16b976e7fb5fc315315966102bd83dd7d98fa8d79cd8de43faf011b839806f3151f59
SSDEEP

192:ZAL88IjA6fG0j0IJAQxPYrPLeApUaKxEmDWl5V/i63Nn4eMq:Zq88IjA6fGW02AqwzLeApUnOSWl5BKq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
428e1bbe69a734be5ffd5d126f607458_JaffaCakes118

Files

428e1bbe69a734be5ffd5d126f607458_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\DeathArt\Dokumenter\Visual Studio 2005\Projects\PK_Tool\PK Decoder\obj\Release\PK Decoder.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ