d:\Program Design\CompanyProjects\Out\NetSafe\Driver\bin\fre\NetSafe.pdb
Static task
static1
1 signatures
General
-
Target
a7afb94b17150f46e4cd7da8f1a9ce12_JaffaCakes118
-
Size
138KB
-
MD5
a7afb94b17150f46e4cd7da8f1a9ce12
-
SHA1
984b61dbab6a10c73556679892297823edcfa9bc
-
SHA256
c646390f5dc0809902100a45ff3838ee4c2c344d25ed32d6c70475ad428380c2
-
SHA512
f2230a362f92693700a6e29a8ad4a8e1e16c0f61d34673b7d949336c5aac06fe059573eb11162529177aadbbef3309afc12d33969f486659e42ba654e2e18996
-
SSDEEP
3072:fm0TCt/ZzZom0IYQnZcEmHX+Mct/VuqBf6ng/fhv:w/Xom0/+Mct/VuqBf6ngJ
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a7afb94b17150f46e4cd7da8f1a9ce12_JaffaCakes118
Files
-
a7afb94b17150f46e4cd7da8f1a9ce12_JaffaCakes118.sys windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Sections
.text Size: 73KB - Virtual size: 72KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 9KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 15KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
PAGE Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
INIT Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 768B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.v-lizer Size: 36KB - Virtual size: 36KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE