48e09351d4ea133c3e44efa634234b6c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

48e09351d4ea133c3e44efa634234b6c_JaffaCakes118
Size

84KB
MD5

48e09351d4ea133c3e44efa634234b6c
SHA1

8c417b2278147c786ff141d7d34c938787ae816c
SHA256

0134328ac7955f411f0f2af1ffdbbb19ae41a48d09ca31e67f6d6b4068f6eb8a
SHA512

574550e4bba1537bc6b5c84e7f059d7b5a03f0f4857c37f529d551a2bf24989f2c39488445a9e5bfa052d0cd5e47fb47950ef3d9e0a7f3d627cb80b00d78bf8c
SSDEEP

1536:PalTYJWh1OR9Pa+3lawQc0QTVjGPgOnjYzu/EnxeqrwdWWLLMv:Palp+R993laRaVjGYajYztnxeqrwdWWo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48e09351d4ea133c3e44efa634234b6c_JaffaCakes118

Files

48e09351d4ea133c3e44efa634234b6c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Users\Pairoch\AppData\Local\Temp\5bvmd7be.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ