30bb571e5f3fcce40511f89b0c53bf8e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

30bb571e5f3fcce40511f89b0c53bf8e_JaffaCakes118
Size

104KB
MD5

30bb571e5f3fcce40511f89b0c53bf8e
SHA1

926963c3022d242c940d6dd786099b8f6f2eb9df
SHA256

ab6aeaaa25f4c6a1deb90c4a29e4f5e73cdcdbe87e0ec44288e80016c3afd9db
SHA512

85ba25dfb7ab680042ba78f7fff3e110453ef7eac40b6c92cbb88cb83ea0d6868c4f2015aa93daa582b42ef6e7cba15e55f8702b662cb0c0497f8468fd759de3
SSDEEP

768:jCHnWWfqMQtMmQ7AbS+PFqJsCjbGG5nsVdqzAm8yvdnVdLx7cKqeuPXIr58iVkIh:jZU9weGXS5X0crm3TPxi8Oyjrxg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30bb571e5f3fcce40511f89b0c53bf8e_JaffaCakes118

Files

30bb571e5f3fcce40511f89b0c53bf8e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Users\mduduzik\AppData\Local\Temp\Temporary ASP.NET Files\root\02769794\1d1d5a33\App_Web_r4qehhq8.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ