3c931d4de183798acc0cefa72388b123_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3c931d4de183798acc0cefa72388b123_JaffaCakes118
Size

1.2MB
MD5

3c931d4de183798acc0cefa72388b123
SHA1

d87904ed5eb47c6939023f57a9f5fe99c2e6890f
SHA256

fbcaf4cbe6b9ba58542a14fbde22a10d008bb17902488a4e817b8c9941511635
SHA512

01542a7a547639d108b91fa750b51338c22eeb301b5aee85591efd220ad9cbc25276ace1872dba04eb41e246e302eb4325eb0f7a1fcc799a1f92fa8784ac4e5d
SSDEEP

24576:67a6GoylTHqavFtubbagdWKiGQMOSnwWQ7a9dMVwLkyN+pm8Gx:seRHEbGVzeiS1N+/G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c931d4de183798acc0cefa72388b123_JaffaCakes118

Files

3c931d4de183798acc0cefa72388b123_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\AymenTLILI\source\repos\WindowsFormsApp2\WindowsFormsApp2\obj\Release\LuckyMeYou.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1014KB - Virtual size: 1014KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ