25eb3c4da30b7880d63a4a5485c6a27f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25eb3c4da30b7880d63a4a5485c6a27f_JaffaCakes118
Size

52KB
MD5

25eb3c4da30b7880d63a4a5485c6a27f
SHA1

cfe43dbadfd39dddc6ec48503fa64f834cd360c6
SHA256

dd179a16c67a138ae1cdbe00982b04840b9a4e8dca329c635f1ee91904bbc308
SHA512

6fd093ab4aabceda75baa9dc3ff1c5d6e4f5c06cf058202515e1df192439258209aefd5b7d5637bdd43ee7ec083385a93bf90af6f9987fac62798f7ecb80b4e6
SSDEEP

384:hm4iuyuPsptbF/UgAjKJbThO4NcmNA4BLVsCLjPT07ujVgNfYildkElLc4EYvdg8:7yu+F0qNhVsCXPTFwdNlVg1eHR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25eb3c4da30b7880d63a4a5485c6a27f_JaffaCakes118

Files

25eb3c4da30b7880d63a4a5485c6a27f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e27d2e860b3f8e2a0fcc19aadb2f0a4f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
GetSystemTimeAsFileTime

Sections

1
Size: - Virtual size: 43KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE