878224ab7f5ced8b033af0afa0da61ea_JaffaCakes118 | Triage

Sharing

General

Target

878224ab7f5ced8b033af0afa0da61ea_JaffaCakes118
Size

262KB
MD5

878224ab7f5ced8b033af0afa0da61ea
SHA1

8e59a2d04f134cbf6b6a2d06f123c4a4b3b11211
SHA256

96b55b43390627ab699063ba72b06b59b1c7fece5e90e4e39c761b7df89ae63d
SHA512

84bade13c4c07b7bb9802d3b7e809712350b8e6ec54b87af97fa1333ad9b4af70c27a0b8327a576e9a4c36456fce211050a213a2a5445895e3d62b50f2fa54ef
SSDEEP

3072:vK8mzXs8UuVfh49HMoHiarmz4s4vJ/5uxXdKgwzuuqPK7zTc37Hfe+eS1mg0YWvi:C8Os04xVHhFsY5uaujK7zTEG+CgMjP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
878224ab7f5ced8b033af0afa0da61ea_JaffaCakes118

Files

878224ab7f5ced8b033af0afa0da61ea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Users\Parm\Desktop\ThugLife.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 259KB - Virtual size: 258KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ