56f9fe66d865eabd0e838ed27694dfee_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

56f9fe66d865eabd0e838ed27694dfee_JaffaCakes118
Size

74KB
MD5

56f9fe66d865eabd0e838ed27694dfee
SHA1

88f71c5b0e673823a2166e2047cc66e3ba33efd8
SHA256

eb817f85395244389b44d9bf1d59603a2e27d66a13ea81eba75ed721c919ec60
SHA512

c40bb512d0e8ae3a1bee1366c7ecbc03783e471d2e6913b0b21e6ddf3405dc8cfa31b374e3b42f2aafa4b72c9d8a22e163328f302e5b557a12f040311d7155bc
SSDEEP

1536:DFn/Jvq43uu/K/FtE/dwItHUe/6XA0QfqEiud2dI65xyh:D9ok0La9d6XAfHpANxyh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
56f9fe66d865eabd0e838ed27694dfee_JaffaCakes118

Files

56f9fe66d865eabd0e838ed27694dfee_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\ImploZz\documents\visual studio 2010\Projects\Service_de_cryptage\Stub\obj\x86\Release\Stub.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 157B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ