267ce589d78271522422a960430ec85a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

267ce589d78271522422a960430ec85a_JaffaCakes118
Size

59KB
MD5

267ce589d78271522422a960430ec85a
SHA1

8f7d3e148edba6316ca8949b09e86ec6ccd9dee9
SHA256

5e1f99533e0990afcc9ea70b2dfaae78a65702d3288eb8a4ee40b7e361a7d052
SHA512

4a82015dae730f2197dce5b0c0855cf352a61cfd8b0c6c0364958341604242ac9ee905d9ebd3e4564e97128b421773aca8997cbb082a767975c89e3774d96344
SSDEEP

768:rRCptZ4JZXBjC590Vg+MiKHZnjmZSyrd5Dyq7as8GWcB915TlIWYidFZ:0ptZclBe4V5MiOIcq778y15Tlz5d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
267ce589d78271522422a960430ec85a_JaffaCakes118

Files

267ce589d78271522422a960430ec85a_JaffaCakes118
.exe windows:29535 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress

Sections

bqajqrzq
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

yjaaariz
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

arrrziii
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rrqyrabr
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ