163507b1faee259b37d22674afcbb145_JaffaCakes118 | Triage

Sharing

General

Target

163507b1faee259b37d22674afcbb145_JaffaCakes118
Size

134KB
MD5

163507b1faee259b37d22674afcbb145
SHA1

d99ec1fae3278c08a358c509a3a164a114b1fdb1
SHA256

c3ab53994594dc64357b438dee9c00360becbc92c14022f0b3c9d8e96d06ce5d
SHA512

70a0516d7b73faa9a82c73583cdfd6f3938779ae20d50df438b7472a3a157fdf30edce0f705eb2921e2c8b7bd37eb811f80b7d3563c2947913b37b2b00e03c00
SSDEEP

3072:RIL61xe3N/Qx61+QBh/v0B8yuTAh5af3ymtY5zFYBxxsju4jUuxb:541+apdyHCf6JFYzGju4jUuxb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
163507b1faee259b37d22674afcbb145_JaffaCakes118

Files

163507b1faee259b37d22674afcbb145_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e2e76cd05b16e12a07ebe113f758e109

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetSystemTimeAsFileTime
GetProcAddress

Sections

Size: - Virtual size: 30KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE