289b67eb5d241501cc76b22235e9ea27_JaffaCakes118 | Triage

Sharing

General

Target

289b67eb5d241501cc76b22235e9ea27_JaffaCakes118
Size

8KB
MD5

289b67eb5d241501cc76b22235e9ea27
SHA1

366b12f072bde5a52e85981c5112ef058592e2c6
SHA256

142e31fb02102b325b191504fa980311e844847b6a38268bb43d1fbe6a898c80
SHA512

6336eb23fe0f2ab947e5389a5eba3881dc51dfda17ca4ad39578b7f75de3cbfb6a280f92accd2993b1658b2dfb38d9c9eacb273f048b61166217f370273574ed
SSDEEP

192:UrpiGGP/shRhh8Av1hyNNyq6slEFJQy5cCtyHEc56tQLkW+:2poPofh9/yNNRIl78Hj5oQLkW+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
289b67eb5d241501cc76b22235e9ea27_JaffaCakes118

Files

289b67eb5d241501cc76b22235e9ea27_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b8111320f794d9e62a7ffe5d84bed59a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualFree
VirtualAlloc

Sections

.uu
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uu
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uu
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE