ed2469f614725534f7ed16c9c28ba6fe_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed2469f614725534f7ed16c9c28ba6fe_JaffaCakes118
Size

171KB
MD5

ed2469f614725534f7ed16c9c28ba6fe
SHA1

6416cebb02cc465f85cbd7bbeae5c001ed7b2add
SHA256

753f5c54367af52673e2fe8dc7cf7a1dd0fd1134bcecfdb93f56cd6dceff6324
SHA512

142f83f483d2464c43f354f153b7d2add4a590821112747d93d96767225a2ee4a6bb7859fa232657f949d9bf311668f1a5d95ca2649bf158a278606b2bc408a4
SSDEEP

3072:9kbTRHXQiquMqidjRBY/Knudi6hl9QiquFqsdexHQsUnFVgogKH:94RXQiZFid9BjuhdQiZEsdeCsUFV/X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ed2469f614725534f7ed16c9c28ba6fe_JaffaCakes118

Files

ed2469f614725534f7ed16c9c28ba6fe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1170ea88261636eb34fe01e181271671

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

_CIcos

kernel32

GetModuleHandleA
GetProcAddress

Sections

.text
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 980B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 257B - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE