7370c66c1be900fc49a087879f50ec7f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7370c66c1be900fc49a087879f50ec7f_JaffaCakes118
Size

220KB
MD5

7370c66c1be900fc49a087879f50ec7f
SHA1

c6be4b6cdd07c48ee1b085d35a1d2e4b5f75fbea
SHA256

e061679e1c06322d8f7f74a153de64d4818f8dd60b7e8a50641e793712a6d0bd
SHA512

0a41649dc7ea425ab5fc5e26c5e1814351d4256d9f5a3c2fd84f0a3d756a07f0919393bef58f703ab95264600d76b995812dc873a6d9cf24c233e9abbaa96f56
SSDEEP

768:0xsWhB3kvEw1G/W2/ErK3CMuv9hrEFo+Myet4hGoJ53d3RqztGgeHJWrhtOjujA4:LgB3kvR1G/NsOCMuvrEFWyC4hGU534

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7370c66c1be900fc49a087879f50ec7f_JaffaCakes118

Files

7370c66c1be900fc49a087879f50ec7f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\salah mahdi\source\repos\WindowsFormsApp3\WindowsFormsApp3\obj\Debug\WindowsFormsApp3.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ