1ed8dd03c4d9f7e2d75b0b294fcaed8b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1ed8dd03c4d9f7e2d75b0b294fcaed8b_JaffaCakes118
Size

21KB
MD5

1ed8dd03c4d9f7e2d75b0b294fcaed8b
SHA1

8d50caac46830ba79cc4b9883bb58221bf63a82f
SHA256

4061541e96306cbe40dcaf5e0eb7ef00051fcece7c00791ad337e018c0615423
SHA512

298bf0da381991bdb4e8107c12d09f568b1ae5df5f6113985323830ba50b110155f0d794960f6555d7e9ce0beb9ddd936180af26a940d8bfcaa6a9ab1a7e2fda
SSDEEP

384:ryMSmI1ckrkf7UsA8bzkxVgOXYKuzsBnFUTmWlT/dRZqZ67vvxlLrSf:rx7mcDjU18vk/XfuzsBnoJJY67Dc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1ed8dd03c4d9f7e2d75b0b294fcaed8b_JaffaCakes118

Files

1ed8dd03c4d9f7e2d75b0b294fcaed8b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

69b0c44eb958846f4686302c021a7ed5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvbvm60

ord518

Sections

.MPRESS1
Size: 14KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE