0e61d09919668196c5c410ab72645b65_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e61d09919668196c5c410ab72645b65_JaffaCakes118
Size

36KB
MD5

0e61d09919668196c5c410ab72645b65
SHA1

845d414b4d291b097bf318597980b07daa0f54f7
SHA256

f249655ea324e64c9b5ff8f0de7e8d35c5eb779947371b05c3ae6b734a0bdd57
SHA512

86f13ca2f343a40d3d2f7dc6ec5f1f99b817361aeb3716e1da46789c39041427c52a3acaa34f35f1f65bb5d3d4c87cbf301bf4c844887f53baf9c87dfd20d9c2
SSDEEP

768:of7znBbJhmLnBOiDE8v6JRn+mMxtlaR8qVzZxxgM:2HlsRDE8vYFbRLHxR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e61d09919668196c5c410ab72645b65_JaffaCakes118

Files

0e61d09919668196c5c410ab72645b65_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ