0119af3ebea486ced49386ea00bb323c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0119af3ebea486ced49386ea00bb323c_JaffaCakes118
Size

181KB
MD5

0119af3ebea486ced49386ea00bb323c
SHA1

848e0cd07c163aafaac596e0483bce92160d5994
SHA256

9c8573f53f1f88cf6d45e33327d17efe3fac9e5a853d7d651964f188d900f72c
SHA512

34146fb791c5ab34c7458abd6ad36bc943c42a6bb1c5af74328b1247a64c5f5036935fdaacd8c2695ccb3f089d465529cc871972f2e6df7f6ebb8f769654c661
SSDEEP

3072:5z/rYG1pYGPD0Nt9fzgfHOvkk774iXjo1VGcRZCszOEInDJeWbmtd0xIiY0:1dHD+tu/EIiXjoqKZEDJ7bmqIiY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0119af3ebea486ced49386ea00bb323c_JaffaCakes118

Files

0119af3ebea486ced49386ea00bb323c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ae0acb434534cf360cefc5c0a087294b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReleaseSemaphore
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

.text
Size: 5KB - Virtual size: 808KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 996B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE