8e89b1f8f24d752e920b79f131becfdd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8e89b1f8f24d752e920b79f131becfdd_JaffaCakes118
Size

13KB
MD5

8e89b1f8f24d752e920b79f131becfdd
SHA1

30db42ec5f9c25bde884aefc22585e0f79a9d7cd
SHA256

a111c81c9ea3b6a6e226fced72abe5486ec8e4a8a96a1b401b0fd4f443fdfcca
SHA512

3d32fca8c7977a8bcb7980cc5ee63f342060b429b705ce854d7ba07519808bda1993afc4cab28ac8fde3548c93bd2d29027edbce21007a541419c22742d2eea6
SSDEEP

192:jjqavT/MA3/4N/SyI/D0PFhY4RHiFb73zEHmhnnNqcls4Uum:dP4bI/D0PHvZiFf6cZv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8e89b1f8f24d752e920b79f131becfdd_JaffaCakes118

Files

8e89b1f8f24d752e920b79f131becfdd_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Projects\PortLA 2008\PortLA App\MPEGLA.PortLA.BusinessServices.AllocationSummary\obj\Release\MPEGLA.PortLA.BusinessServices.AllocationSummary.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ