acf843e9026ddb238a12b4c040a7351b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

acf843e9026ddb238a12b4c040a7351b_JaffaCakes118
Size

53KB
MD5

acf843e9026ddb238a12b4c040a7351b
SHA1

1b96a68a1494db5d0996bf60c80e07bb90391a62
SHA256

66ddd40b67d1812e72bce5be168ed3875193d67013273ca931ac3a709502f21e
SHA512

e501a0072227ad2101db730ab9b921a14841c5814a09b3234e8c2cde696b063d206cc8d1bd5ef75389ca5d42d8b5f2d29bf4575cc8b9f960298fde6b5951669f
SSDEEP

768:/XY+40SY6AxXo68TLpMFJaYkBdswkx/Vs1JbJ1nhyuU5CrnWIhUbuV143KEjprCf:/NX+LmmYkfoVaYCr/hU6D46Ejm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
acf843e9026ddb238a12b4c040a7351b_JaffaCakes118

Files

acf843e9026ddb238a12b4c040a7351b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5073e28bd7edbbc1d096ef4de90d7348

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

ws2_32

ntohl

msvcr80

ceil

Sections

.MPRESS1
Size: 48KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 428B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE