1886aee2bfbce51296358d5654f9583b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1886aee2bfbce51296358d5654f9583b_JaffaCakes118
Size

28KB
MD5

1886aee2bfbce51296358d5654f9583b
SHA1

5412d63e6462ae342c31fb7ce8a14102c4ed3597
SHA256

090e6ac293b8e4f8477ac810545479ea02243cc694e110a490de4e3fb87a0b53
SHA512

dfef5783d988a65bb67d89162876d674978a2bb9325290972f155b0473e22c4979b9fcac17a08e635c859e57def4ec44f38e6d2187c56924ad2683bf639bfb16
SSDEEP

384:+8RfDi68edjYZ6agwZjdVsdZIQOQpRKv/q4qkLkJehoq//P:tBe68ed5a1xFQO0Ra/Jiehd/3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1886aee2bfbce51296358d5654f9583b_JaffaCakes118

Files

1886aee2bfbce51296358d5654f9583b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

09d0478591d4f788cb3e5ea416c25237

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

Sections

.text
Size: 15KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE