e892d39de9aede0a7a176c4eb83dd090_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e892d39de9aede0a7a176c4eb83dd090_JaffaCakes118
Size

344KB
MD5

e892d39de9aede0a7a176c4eb83dd090
SHA1

4e8110cf6a49503e11f08858da8cab10c3ea792a
SHA256

7bf23470e84372e34d28781410e5455191a6c721cb156afe1e0a75e02219a751
SHA512

e3682056fbe8dc33b4e846b4ef8049a1ba89f4f292f0c6cf63b819a41f7f4e859e300257311cc02a9cefc08537f4ac73d94462c13d16e4adf6244bf803204e90
SSDEEP

6144:hRMHHJIzEVplh+eSgxo76oT2xtH8yyk7Dssa7pMqcIOfnCscp3:sHNVnh9ZWixtH8yyHh7pM5tns

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e892d39de9aede0a7a176c4eb83dd090_JaffaCakes118

Files

e892d39de9aede0a7a176c4eb83dd090_JaffaCakes118
.exe windows:4 windows x86 arch:x86

eee9062b8cbe1efb89c250150605b1a4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

FatalExit

Sections

Size: 319KB - Virtual size: 736KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 12KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ccp3p
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE