6c3411ddb7776e64b67e7f9d7097ff8d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6c3411ddb7776e64b67e7f9d7097ff8d_JaffaCakes118
Size

8KB
MD5

6c3411ddb7776e64b67e7f9d7097ff8d
SHA1

923e340e7ae6ba34f089797f3e4d191ea416406b
SHA256

9d4f0593d28622496acb7af0615aed5475c527a4566faf8d54fd2eda4718cda4
SHA512

45fa50f889df3e4ea33fa7a1c5bc1cd3dbb244db035bb71e736f6a1c8ff8891e7532bed4c25139de7946ca72d12c41c9816f25122027e9a36d58977838db8d5b
SSDEEP

96:kqtIr0h6ZL9+1tXEwjmkZUBnEVmPwqkMDOuXttr70Hw/0PJ3i0+i:RtIQcL9+VxZWEVykQtrYHwcJ3i0+i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6c3411ddb7776e64b67e7f9d7097ff8d_JaffaCakes118

Files

6c3411ddb7776e64b67e7f9d7097ff8d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\AymenTLILI\source\repos\WindowsFormsApp1\WindowsFormsApp1\obj\Release\Sotastic.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ