0a16794720b29b693a53af3be4f42888_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0a16794720b29b693a53af3be4f42888_JaffaCakes118
Size

473KB
MD5

0a16794720b29b693a53af3be4f42888
SHA1

e0dc6a1af7c04a9ed4265999a2401b71eb86b7c2
SHA256

b79e460af64cdcca8d94b609bb9de0ea1bd3418497756b5e6c4bb8cee185e310
SHA512

c62e1b08a69a483eb5721e761ad81f167219b5f6ef8564c10d53509a35d01bb99bbbeb43ab8e5f66afb5a0a0a1f73eb9794502c2d7792e731ceba680aebf999f
SSDEEP

6144:edrNO4kCbzzFyY8KLAzbo0pK3KzdRVWvUFGxcBe9ivVL+PYUjbLvmtyFmA4iuU:KOnCbNJMzbo0Y3KvVfFEyVL+vOo4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a16794720b29b693a53af3be4f42888_JaffaCakes118

Files

0a16794720b29b693a53af3be4f42888_JaffaCakes118
.exe windows:4 windows x86 arch:x86

647b2d25b4821905b4195ff7a6455b54

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress

Sections

hjjgjyrt
Size: 512B - Virtual size: 816KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�fdgrehg
Size: 469KB - Virtual size: 472KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fersgegh
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE