288989357cd2f5d4958822c2ededd598_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

288989357cd2f5d4958822c2ededd598_JaffaCakes118
Size

92KB
MD5

288989357cd2f5d4958822c2ededd598
SHA1

481ebb07191707bec4ef98753f2265b73534b8ba
SHA256

780c007a63bb340416cddbbaf5bb59e68792041b0328f2210722a7eb7039b97a
SHA512

25eb6274485271c5f03bb28d2cb5aa9a20abee4657189d1b460e8e18da80a71de8ff914d0cfd79c6cf336709b893fd186aebe9cbcdb4c354cd5bb88e5bab0fca
SSDEEP

1536:PbOq/TkBEgpy/TFdTIq6GTOn6WFBejGP5pA0alXo3fDZdWWyWNEw:PCq/TvgpWTLTIJagJFBejGRpA0alXo3f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
288989357cd2f5d4958822c2ededd598_JaffaCakes118

Files

288989357cd2f5d4958822c2ededd598_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Users\Anthony2\AppData\Local\Temp\x78lzhzo.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ