0ac57536fb11d8b47df8b7b8d5f44d2f_JaffaCakes118 | Triage

Sharing

General

Target

0ac57536fb11d8b47df8b7b8d5f44d2f_JaffaCakes118
Size

4KB
MD5

0ac57536fb11d8b47df8b7b8d5f44d2f
SHA1

80863139a2dee7d3a636cd3fc93e379027e8842c
SHA256

1715200a3223659a9594260eee92c6ba78651f889127e77a4f92cd98f6503063
SHA512

723b02132b8496277dae9395a4c7e3a98c2c74043d3998b5a709a280c92a01c9fbe519975da77d0a82a870d5557e019efcdb2364e4e0a3f03db23931328304a8
SSDEEP

48:6L+KE0lMSdYGM4uJX78ecDVRk4olbk4OUk475mk4Jr:vKzlLdXc78e4kFpkHUkSmk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ac57536fb11d8b47df8b7b8d5f44d2f_JaffaCakes118

Files

0ac57536fb11d8b47df8b7b8d5f44d2f_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Projects\PortLA 2008\PortLA Admin App\MPEGLA.PortLAAdmin.BusinessServices.ContractAdmin\obj\Debug\MPEGLA.PortLAAdmin.BusinessServices.ContractAdmin.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ