fe5f05dbbdfd3a93ab5397053cbfb6f3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe5f05dbbdfd3a93ab5397053cbfb6f3_JaffaCakes118
Size

36KB
MD5

fe5f05dbbdfd3a93ab5397053cbfb6f3
SHA1

130a991112d1a4d8b77357cf916ab26f9c84520e
SHA256

8454f6f23f3091af78262c8911264bf30c74399240144e432012f7933d735c99
SHA512

74dc4054444b7d03803bcc2e29ecc584597f31d2111621d4fb3282b0e21e3a5cf1953a2aa5376992947eff754f1553de2c611ad1b784a9441a09ed6aba2bd6dd
SSDEEP

768:mipCoCHl/SwTVQuLmCcdp2wAFAOK8FakM94:m3FJSwTDLmCcKwuFak64

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe5f05dbbdfd3a93ab5397053cbfb6f3_JaffaCakes118

Files

fe5f05dbbdfd3a93ab5397053cbfb6f3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 114B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 358B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 515B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ