ffece4fa55a0e35387b50aeeaf441cfe_JaffaCakes118 | Triage

Sharing

General

Target

ffece4fa55a0e35387b50aeeaf441cfe_JaffaCakes118
Size

88KB
MD5

ffece4fa55a0e35387b50aeeaf441cfe
SHA1

63c59f0a2332069f2008e7df50e70189ec5e9119
SHA256

f3136c02f11ba7ee4b216c74e102323935ed55f47c19c781581cf1fcb4c11547
SHA512

e2383a14c08623c1e9217c6b6028a72df8b3db59d5157c5a99d69c188e81a32884091936870c2ab7b387fd622959217b762c5f0439b56a22a621eeac5b9343b8
SSDEEP

1536:R1oNFMSMUPsLdkSP2JVLsXrFjGP5ppwNgEXlgcbNdNW05NM4:R6NFM4PsRkSPWorFjGRppwNpXlgcbNdR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ffece4fa55a0e35387b50aeeaf441cfe_JaffaCakes118

Files

ffece4fa55a0e35387b50aeeaf441cfe_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Documents and Settings\10320003\Local Settings\Temp\tqbzvovn.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ