fae89228aab51b5f201583d4a835078f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fae89228aab51b5f201583d4a835078f_JaffaCakes118
Size

1.2MB
MD5

fae89228aab51b5f201583d4a835078f
SHA1

d97c0a0754502eec554bb1ccb34b4368867f46a4
SHA256

3c5906a4ff9a93d99c1135ab7b6b2fb3f877954346cfb1d152c6b57d123739a6
SHA512

67d8fbb76796ba43369310eff46fb0e0d5f077dfe655b9b2925c83b13d82879005a666eb4241f1e422306d1ac08085c3c516a6e6cf5676bfcac945305ac0cafd
SSDEEP

24576:ipBQIoHxxH1qi4ITpxDsg/sgypwfOux8Z35cRFsNugO1gFm5g:iIIoHPH1qi4Cp5sgNypw3t6uPXg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fae89228aab51b5f201583d4a835078f_JaffaCakes118

Files

fae89228aab51b5f201583d4a835078f_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\TDM2013\Klient\Smart TDM Prihlaseni\obj\Release\Smart TDM Prihlaseni.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ