f95e7d811cf11955719c4f577901c067_JaffaCakes118 | Triage

Sharing

General

Target

f95e7d811cf11955719c4f577901c067_JaffaCakes118
Size

45KB
MD5

f95e7d811cf11955719c4f577901c067
SHA1

1aa727ccd037a83039bf35b02700f830e17d6fbe
SHA256

b02d9dafbdbd4ec2e352725ada40a9f093438966ced1d7ce2608a2d9e3fc8f86
SHA512

6a03a86e8cd2cc6ace0020351caf10a212fa3e27350b8057da568279bf0d80e4b32c93a84835243a8201d20ef687ec140ec326c62094e924327ce4359126aa8b
SSDEEP

768:zuX+TvAJ2Kgy0/RJEr4kuW4u03yhRQbP2zArDFLQjVWtSnYi5lR3jISF:qOTAJ2Ty0ZJmrQ3yhy2krDFkiji1zIQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f95e7d811cf11955719c4f577901c067_JaffaCakes118

Files

f95e7d811cf11955719c4f577901c067_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA

Sections

.text
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_TEXT2
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE