26393c568af08fdffc22e4fba271cafd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

26393c568af08fdffc22e4fba271cafd_JaffaCakes118
Size

92KB
MD5

26393c568af08fdffc22e4fba271cafd
SHA1

1457ca519bcc9e13e7c299d939ce2acb74e1dcd2
SHA256

8d54b21f03f97fc07c21d70e39279a967b1d33c1ea908617c45af1261688eb70
SHA512

6b11e3d070ab5f332202f4ebee3109189f868b19b8be9256e87da4786daba90865e3e1270e6da350d0ef42c76dae1bb74a641fe566a512832c40fc26ab08fe1b
SSDEEP

1536:F5N9hKu8JO0fddRl0pVEco1+cjGP5pjXBaXC3J0ZdWWBWNgj:Fj9UJOedQHcjGRpjXBaXC3J0ZdWWBWNq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26393c568af08fdffc22e4fba271cafd_JaffaCakes118

Files

26393c568af08fdffc22e4fba271cafd_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Documents and Settings\26000168\Local Settings\Temp\gctztvz7.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ