JaffaCakes118_bfcf3ab1f8580d01f39f88cd252f63b3 | Triage

Sharing

General

Target

JaffaCakes118_bfcf3ab1f8580d01f39f88cd252f63b3
Size

425KB
MD5

bfcf3ab1f8580d01f39f88cd252f63b3
SHA1

65e81916ac4c3377f1bd445857a5c15f6c98c455
SHA256

75643e31dc8e898bdd2e7640f64d358571ca7a65b2f5ccce29d7c7e7a3f952a8
SHA512

2ca38dc8d9143f9c13af055ab822254bac1d7449e61725fbfdb80dd6d21b71edb4405b557676f8aa0afac6af637ff0f51c194954278fb260f135dc422b6d13dc
SSDEEP

6144:x1vuMey/YGOIRKw6Vc+7TDlrdsrDcd29bv2fno6P0jx1cKo6RfchUvFWYf:3e46lciBd+cMJx6P0/cOchuWC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_bfcf3ab1f8580d01f39f88cd252f63b3

Files

JaffaCakes118_bfcf3ab1f8580d01f39f88cd252f63b3
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Surse\Sepa\NEW N0$crypter\NoAdmin\Avg\Avg\obj\x86\Release\Avg.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 121B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 369KB - Virtual size: 369KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ