JaffaCakes118_467d4a49fe9c5ed094b0526e66068464 | Triage

Sharing

General

Target

JaffaCakes118_467d4a49fe9c5ed094b0526e66068464
Size

737KB
MD5

467d4a49fe9c5ed094b0526e66068464
SHA1

2fb0a248f75a8439f65e8fe20988133b6b50870b
SHA256

a82f1d608f264ed409efcfcb650e231884c01fa148d67c21b2403da1b1234352
SHA512

b636ac0873a98ba72d0ceb63cd138181a95806741a16162573bc587daa9d92e573570f3964b07bc742d83a9f0951f0285d2cadde7e7ffa892903e20d703d82e6
SSDEEP

12288:7rf5jmH+/NsbM2TL8dttO5eGv0KpgvF2JRfloF+Mb0Y+BiMEiSJJnCtwn4IB0:H++FinTL8HtieNIg92JNK3qiME5bCOnK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_467d4a49fe9c5ed094b0526e66068464

Files

JaffaCakes118_467d4a49fe9c5ed094b0526e66068464
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Mirko\Desktop\INFINITY SOURCE\v3!\Stub\fil1x132\obj\Release\m1231!@#asdasdas.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 142B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ