ef0320408e23fede28a74312318662ba_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ef0320408e23fede28a74312318662ba_JaffaCakes118
Size

214KB
MD5

ef0320408e23fede28a74312318662ba
SHA1

9c72bdf400edf707c7ffd395275b4fb14454bde2
SHA256

1d323f74afa0217915e199c8f80ca63ce96b825069c8ba944705063911777301
SHA512

3d5f52942237938298228e8a5d2c7457ad43e1981bd7734990b470f9acb657aae834c923ab5e1e6bbd0c30fbd0389af2be7e8847647e60eb1ef12ac99e440253
SSDEEP

3072:R7AVqdDzYo3huN71RN5M7AeTCYjL84zHzYogIuN71RN5M7AeTCYjL84zn:RJDcoC7f/eTBXjHco47f/eTBXj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ef0320408e23fede28a74312318662ba_JaffaCakes118

Files

ef0320408e23fede28a74312318662ba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Joel\source\repos\Mozzarella FireWolf\Mozzarella FireWolf\obj\Debug\Mozzarella FireWolf.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ