JaffaCakes118_f9d96d33e3b731b94096e88d1f3b5d0e | Triage

Sharing

General

Target

JaffaCakes118_f9d96d33e3b731b94096e88d1f3b5d0e
Size

2.7MB
MD5

f9d96d33e3b731b94096e88d1f3b5d0e
SHA1

b8b1f0770e6004fbdd2fbc94c9e81097060fec2a
SHA256

7ff1d4d6b1d1bc272efe51b4b503518a1d0b41d838162c18d9ab8cfaf9db1084
SHA512

b0c4a6da81de149994bc17833c7e31c5b13b9a3bd75218f33ef3463e2d463cf705bbfd99b79bfd667511f942a2a581c0882eb0bbc03952c235b708c36fa72ea7
SSDEEP

49152:Njn0wmw3yd2OluON4fA9uxL9IW1dXg3S/MHmgIhbuRKwpB:Nj/XL9IW1dXg3S/MHmgIH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_f9d96d33e3b731b94096e88d1f3b5d0e

Files

JaffaCakes118_f9d96d33e3b731b94096e88d1f3b5d0e
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\_Bld\10657\7994\Sources\obj\Win32\Release\EvaluationContainer.NetFX45.csproj\Microsoft.Mashup.Container.NetFX45.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ