556e5a3e21eb71a9370472a0bfcfd1a8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

556e5a3e21eb71a9370472a0bfcfd1a8_JaffaCakes118
Size

6KB
MD5

556e5a3e21eb71a9370472a0bfcfd1a8
SHA1

1ce2a67820e7865ffb2e421e33c8e49a8e423801
SHA256

45431f68ac1e359b61aaebca0e251ee17ae66db2af89a29b69d1f086772f4d8c
SHA512

230bf7949164f3a6b03f8346b1f3ef41764f27bd4b2fe5a1cb6c21dfe40559c7cc46e57b1807a8487dd04374b66d60790da0e30e59744efa2b8248aaa4bb5224
SSDEEP

48:6A0HFTf7craXGmjnJYmuthkgrNMDfkaGOMBNjMhi88UOs3tHKPoWlePoClPoRFPM:y9fi6GEJItageOZ4hOCW7CSk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
556e5a3e21eb71a9370472a0bfcfd1a8_JaffaCakes118

Files

556e5a3e21eb71a9370472a0bfcfd1a8_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\Working\BuildAndLabel\Framework\1.0.37BEES\Sources\EBP.Framework.BusinessLogic.InterfacesV16\obj\Release\EBP.Framework.BusinessLogic.InterfacesV16.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ