0d66e1d1e11f539e80a50a87f7e8a27e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d66e1d1e11f539e80a50a87f7e8a27e_JaffaCakes118
Size

244KB
MD5

0d66e1d1e11f539e80a50a87f7e8a27e
SHA1

399b31efff04d3b093de7441c0bfc6b145d23507
SHA256

a8db1e6c5d4cde2b71c321862010f061b68cc7a390f3c4dbfbf6ab6a0c499261
SHA512

e94de71221c0dbab4536b0a7008deb6f505450bd37da290b37c112f6c57b96819d3a106fa298fc71153b2c72f2f601bdb3575d834ce8b1c8d3ee5efe78c5ef69
SSDEEP

3072:nkwUftP4Nsdygsj20QRna4z7uJEz52Z9c:nLUftP4N+ygsyTNV7uJEz52Z9c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d66e1d1e11f539e80a50a87f7e8a27e_JaffaCakes118

Files

0d66e1d1e11f539e80a50a87f7e8a27e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 116KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ