b3b950239345fcaf8f9d3fd5d7077e3b_JaffaCakes118 | Triage

Sharing

General

Target

b3b950239345fcaf8f9d3fd5d7077e3b_JaffaCakes118
Size

60KB
MD5

b3b950239345fcaf8f9d3fd5d7077e3b
SHA1

3b5a969f08901b664e7c33460620adf163502ea2
SHA256

7aba967c12233b18b8a361a71e0ca8971f0ade3495fa4eef86bd558306a955c2
SHA512

36559a02282977643e7021ffda2d7da1d46b61ca830a102cc9d91969891addff64b56562f18b02985746c40c4af48941c9e059f58a6bda5efc1edd61e9d2c6e7
SSDEEP

768:GN+bxWGrXVRF9cBI1M6m1z+znUvk2e4PMo3LcqD66I7:t9WGrvDcBIqts2e40o3L8r7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3b950239345fcaf8f9d3fd5d7077e3b_JaffaCakes118

Files

b3b950239345fcaf8f9d3fd5d7077e3b_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\c2009\AppData\Local\Temp\Temporary ASP.NET Files\sito vendite\1af0b2c1\dfdd643b\App_Web_6zefpc_q.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 4KB - Virtual size: 162B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ