2374f56e94909c8797e4871679b858cf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2374f56e94909c8797e4871679b858cf_JaffaCakes118
Size

59KB
MD5

2374f56e94909c8797e4871679b858cf
SHA1

0cc63fd70d072bfff3a7e11b074585c6f9d63e43
SHA256

f663658cdea22cc823fac30bfbbb7594323eb20b518534606fa03af52f50490a
SHA512

b559a3b8f231064b7e3787257f1fb90caf85687fd74edda16cb480100ffd7ca7fbf9d695a1764fd5d6e362874e8cb62023d5014bd49100c0f57f9d1ca432a896
SSDEEP

768:HKCFFj20o+Kp/rzjVFoY1D3I6Tp4aiPH74wY0p7lpr6oZpLl9C8nFjyjOWZIs:HKWtoRpXjHTI6TKjF7lJ93LDGjJIs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2374f56e94909c8797e4871679b858cf_JaffaCakes118

Files

2374f56e94909c8797e4871679b858cf_JaffaCakes118
.exe windows:27443 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress

Sections

ajjrzijb
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

ziizayyr
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

razjibry
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ybirbiyj
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ