42b39b2bf9643b95d75b34ea398d82fc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42b39b2bf9643b95d75b34ea398d82fc_JaffaCakes118
Size

98KB
MD5

42b39b2bf9643b95d75b34ea398d82fc
SHA1

fc53ecdf9a2db676553bfbd66f005d5e82e67739
SHA256

ac0972ef89290a199dd32a3b441ecc2542f92413d397040374511a8661f7a91b
SHA512

5b172dfdbe3e5c8b14957351089439164727ecbf820ab4dca74487e4e4059a7b68b89f9ce59e8a8bcba0f2d839ae5d8ce0d43569e4ae998eb4a5971204d65fb9
SSDEEP

1536:9WsQLwqhJFULLreYYcKvs1twTViDIoY3sSrJrTPI08hFaSZ25:9EwDLLrfYDvs1ekBYVzZGFao25

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42b39b2bf9643b95d75b34ea398d82fc_JaffaCakes118

Files

42b39b2bf9643b95d75b34ea398d82fc_JaffaCakes118
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

Microsoft.SqlServer.Management.PSSnapins.pdb

Sections

.data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.extrel
Size: 512B - Virtual size: 33B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ