217b8cabc4133e7803d143cca20b9525_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

217b8cabc4133e7803d143cca20b9525_JaffaCakes118
Size

11KB
MD5

217b8cabc4133e7803d143cca20b9525
SHA1

c9e1300ef330144045c4f4ee421bc9d10e4506bf
SHA256

e14cbb430c66337d844906896a3324bf98f620bc46c90f3c469bab028598d7f0
SHA512

24e227b766b607775782f5ec1deef1879ef64bd81df446ce6402fbbe179c013a8d31c6724de7cc4686721d3cc7098ae665ccf0ee72764ac6b8c5d9d487d75334
SSDEEP

192:3rAgbj65tpijIJjUfjjmDZJ9/NTn7MQSA3S05Yc:3rAgbjGtpV1Ejj6L7BT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
217b8cabc4133e7803d143cca20b9525_JaffaCakes118

Files

217b8cabc4133e7803d143cca20b9525_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d2ffc2832b0a195ed606de41fbce2161

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess

user32

CharUpperBuffA

Sections

.text
Size: 512B - Virtual size: 34B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 150B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE