fa5b1aad729fcf1c0660c651f0183f34_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fa5b1aad729fcf1c0660c651f0183f34_JaffaCakes118
Size

59KB
MD5

fa5b1aad729fcf1c0660c651f0183f34
SHA1

c92ecffca71756f4ba04b4c4a9a74b9e68a5120c
SHA256

61227198887a7344d1dee424b1978ee9eaec41d2a985931bf309dfac34f0e6ca
SHA512

b5ec804ca879181e6c1af9376fd8a3456b7a9e963c68a2af2f523d41dd063e31ad7cd5342a4b89f0f5850f92e57864221683e9881f15ef7385947c416b223c9f
SSDEEP

768:XHqz4XsbDUuy0mJFqSpLxFSgQIa8NPtO3j3ogMSsvLODAr:a5bQl64asP6zn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa5b1aad729fcf1c0660c651f0183f34_JaffaCakes118

Files

fa5b1aad729fcf1c0660c651f0183f34_JaffaCakes118
.exe windows:38049 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress

Sections

aiyyrjbi
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

jirbayqa
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jyyjaryj
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qqaybzaa
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ