JaffaCakes118_451942957a3e12859c8e7072e5567b7b | Triage

Sharing

General

Target

JaffaCakes118_451942957a3e12859c8e7072e5567b7b
Size

922KB
MD5

451942957a3e12859c8e7072e5567b7b
SHA1

9b1cdd121d6042f92d340232df09d5e335f707f7
SHA256

e458c0a05be86989e24bbb05802b11f6314991c937eb56069bcc019e3953dfcf
SHA512

9f239945f9c6dc63bead66c20abbe1b2acfadf3a38aaa81fcbc611dc0dddce4c9a551737e0d8a63d31e7048655f60e7614918be707d7b1214ac9c003a0f867b3
SSDEEP

24576:BalaUV3mShJfVh8yalaUVamSh5fVh8DxwiOCjch+c:4aUV20JfVhUaUVB05fVhUxwgsl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_451942957a3e12859c8e7072e5567b7b

Files

JaffaCakes118_451942957a3e12859c8e7072e5567b7b
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Stefan\Desktop\WIRE\weedstb\weedstb\obj\x86\Release\weedstb.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 302KB - Virtual size: 302KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 125B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 277KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ