24e921116495c113c1a45db04059c4f4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24e921116495c113c1a45db04059c4f4_JaffaCakes118
Size

17KB
MD5

24e921116495c113c1a45db04059c4f4
SHA1

dfd7f222280d52081fcbb26c4ab4c52dbb45e985
SHA256

fc84f3bb9816bbf68c5372aae461a42f8b96de954f2ccb2e45b9ec749b1740f2
SHA512

4297c01ef2c5913a7c80c9fedc00b458960bc3d7c24814f85a1e8ed7daecd0e0bbf86f0c4d015f6195a89972970e8b348fa8bcf635b67c970db1559c66e1d9cd
SSDEEP

384:dbWcnXgzB1xFvjholPQtUCaf4PIzlYku7vvxlL:dbXQN1xsFcFQzl67D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24e921116495c113c1a45db04059c4f4_JaffaCakes118

Files

24e921116495c113c1a45db04059c4f4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

43d8d31c12893c7c3235b6b3b3b13f32

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

demogl_dll

EndApp

opengl32

glEnd

msvcrt

exit

Sections

.MPRESS1
Size: 13KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE