h:\programs\magadan21\outerdrv\objfre_wxp_x86\i386\OuterDrv.pdb
Static task
static1
1 signatures
General
-
Target
ac2b601b0c4c12d935cde48049110190_JaffaCakes118
-
Size
210KB
-
MD5
ac2b601b0c4c12d935cde48049110190
-
SHA1
d385b6a1a6950d8598e86e7abe83639c8ec43b60
-
SHA256
9bcf128fe656b9ab8ce785909958d622f366eb3a2126e919279ea7efa42733e4
-
SHA512
fb5ee6919f2724831ddaa4aee7f76818f3f6d5a7c8ac14d80f446f9b129db0b2cbb8af245aaf9f85af36b8bb125b74885b2ed518f0c03fe2ef7404ac452a0079
-
SSDEEP
3072:sbNVxUSJeMAwL3ybIR+CTJliwVAynXavs3F3NyWuB/0hvtc7xeTRfujqLelcV:sbNVxUSAMv8EaIdyWu6hFc7kTa2
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ac2b601b0c4c12d935cde48049110190_JaffaCakes118
Files
-
ac2b601b0c4c12d935cde48049110190_JaffaCakes118.sys windows:6 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Sections
.text Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 128B - Virtual size: 116B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 128B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 205KB - Virtual size: 205KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE