475ed004da785a249ba1a537a5a91f46_JaffaCakes118 | Triage

Sharing

General

Target

475ed004da785a249ba1a537a5a91f46_JaffaCakes118
Size

1.4MB
MD5

475ed004da785a249ba1a537a5a91f46
SHA1

1845ce0b33790401c02ae2bc4c921e4b67d62d92
SHA256

7b57f2c1e6199c2973acf6527a75a5f2c233e5f3c309a07737c230706eb411e0
SHA512

8a72b97ee212113ec9866880ca06f69b68cb490da87b460efc6606095058508a0e6bae6c9c46692c84b8dde9366cca7470602fb7cea78dfcf0ae4be7d349cd8e
SSDEEP

24576:Q/ZBumSO9V6T6gfa4+hqUM4/JibT5cbC:Q/rpgA/BJio

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
475ed004da785a249ba1a537a5a91f46_JaffaCakes118

Files

475ed004da785a249ba1a537a5a91f46_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Jeremy\Desktop\XYZ Unlimited File Binder\Stub\obj\Debug\XYZ.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 125B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ