038bc4ffedaa5df35ff9a9c69c09bc97_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

038bc4ffedaa5df35ff9a9c69c09bc97_JaffaCakes118
Size

24KB
MD5

038bc4ffedaa5df35ff9a9c69c09bc97
SHA1

7d27b63c43fc7e7a01bf052b80c2af6311ac9950
SHA256

0b794c6b0169f5ab93208d23ce7bb5d41706f4a14a06b80fd5a6ea8056513b85
SHA512

bb99276e2dd8fa9781f9846b4b0e77bdf863e0ffa4eae3489ad30d1dce5846203300a275dc5429380d4f60e343c1e37180ede06f585d80015a2badce00f5bd7b
SSDEEP

384:Lkcc6wym3g/sgnRoIOZ3pEertKCx/dzdZDRmIsPBz0/g8xl3gP:IcXWfgnRoH5EertK2h/IFBz0/lxl3gP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
038bc4ffedaa5df35ff9a9c69c09bc97_JaffaCakes118

Files

038bc4ffedaa5df35ff9a9c69c09bc97_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a49ccf47e99da2b82298febafd42cdd4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
GetProcAddress
LoadLibraryA
lstrlenA

msvcrt

_strdup
strlen

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ