87f8409b3b2867a7daaaf429a7b5eb4d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

87f8409b3b2867a7daaaf429a7b5eb4d_JaffaCakes118
Size

14KB
MD5

87f8409b3b2867a7daaaf429a7b5eb4d
SHA1

72b41cd5509753b524ccc50c5c568b3734e19afe
SHA256

bde1e8d65d20462381902337bcd3bd781cac3f2e1aad11944a1730651e45431c
SHA512

9e1e53adde049d68e2d40fa0cb17c8af9cd32b1ee576a3f69b868e4537a8e28bbec15bb96d58bb9feafe52dc0ac5cde98ed1656975552a2fcfc8d91026c6b619
SSDEEP

96:xImbGKFlXZoJikMIeoVI0YWerBJIKYzU40DEg4bModfILdEP+CHPremMswDMsQ1V:hu5M/onYBIm40DOIiPLHPkDG1XfMw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87f8409b3b2867a7daaaf429a7b5eb4d_JaffaCakes118

Files

87f8409b3b2867a7daaaf429a7b5eb4d_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Windows\Microsoft.NET\Framework64\v4.0.30319\Temporary ASP.NET Files\root\fe909879\93bd23e1\App_Web_xwxdul25.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ