06545cf20f26b6b8465fe8ec2fbd8fee_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06545cf20f26b6b8465fe8ec2fbd8fee_JaffaCakes118
Size

32KB
MD5

06545cf20f26b6b8465fe8ec2fbd8fee
SHA1

094cbb2f48f85b58c8e2242e704c5612bc569ce2
SHA256

d859ad3e82d6645bb6c630904a104025c0127246af3387d06f7e4c129933a5b7
SHA512

24e3ae9a370f9cfba58c077058727528a027fae4c043f478e13af1980500e4c2e6c0e30dcb0093cdbcadc46281c6a24298f026050a3ba0bf9d510c6313cc9ead
SSDEEP

384:4g4gRTWKsT9vmSaSnKXZ1JiTvHDkg6itE5P5jlzV8UqfasforV9TnPnu:MZoivkNiqjns4TP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06545cf20f26b6b8465fe8ec2fbd8fee_JaffaCakes118

Files

06545cf20f26b6b8465fe8ec2fbd8fee_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4278480a3186073fb1ab5bf06d0588eb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
GetCommandLineA
ExitProcess

user32

CharNextA

ole32

CoInitialize
CoUninitialize
CoCreateInstance

oleaut32

SysAllocStringLen
SysFreeString

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE