fe9bf659f5dcb87cb1f991e4d0a41bb5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe9bf659f5dcb87cb1f991e4d0a41bb5_JaffaCakes118
Size

987KB
MD5

fe9bf659f5dcb87cb1f991e4d0a41bb5
SHA1

f78d0d2ab94b32313cff6f3fcc8047c901193826
SHA256

fbb4c6443a7bb740690390e98914b804a99df9808a7f7123d47b8e1b49a0284d
SHA512

b158c770dcc0eea3a8110329d1163b0aa77abbec888edd55fada2aadc6111dbfcf4228924a298c4f2cc6073a2d12959979fe4a6e7852f4fc2cba035e7c86493e
SSDEEP

24576:lDy1UpVzD3RXWqNiSv2fRrzLhkvC5NpOzDBV:ByoBLr2fRv8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe9bf659f5dcb87cb1f991e4d0a41bb5_JaffaCakes118

Files

fe9bf659f5dcb87cb1f991e4d0a41bb5_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Guidiamoci\Desktop\GuidoAusili sviluppo\GuidoAusili\GuidoAusiliOCX\obj\Debug\GAOCX.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 985KB - Virtual size: 985KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ