16e551b47e6c0344e12749e41410360e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16e551b47e6c0344e12749e41410360e_JaffaCakes118
Size

44KB
MD5

16e551b47e6c0344e12749e41410360e
SHA1

17d3bfeff9c4d12154afc6ff93a895a862163aad
SHA256

76664070a8cb3e8768c3245fba1153ffb578f24cfa944175def24d9f3a08e62c
SHA512

9189fabf05dd4a45f27761c98cba01986cd2be6b2a23d9f92331aacacfd7056a5a61b255ea15a79eedecadcb29568a08ccee06b5f2e1bcacc85690770a23ad0c
SSDEEP

96:wuWGc9Y9tZEzYo0D3MmFxSzyUo9MaWy0Hkhz7yyckIfZo8QVbYQo/hjZ:GloN3NxSTaWy0Hk5zjIkdQZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16e551b47e6c0344e12749e41410360e_JaffaCakes118

Files

16e551b47e6c0344e12749e41410360e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

05c7df6d575c13faf78878f9450f3b20

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
ExitProcess

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Host
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Virus
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 289B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 476B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ