2de3348b5f651d2235cefff004683262_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2de3348b5f651d2235cefff004683262_JaffaCakes118
Size

312KB
MD5

2de3348b5f651d2235cefff004683262
SHA1

e85d0b31b4cb2feb0c3f63e8010ddae90fb6bd75
SHA256

43b67ab113e3a9bb7fab90606ee8959be9d718cceb49c50e1a2d9682810e18c1
SHA512

0217f8def7019adfd33c8d6e441b33643ca7c59eca551da61d8a3e715dbe75d4a1192dec6b9d5bca07e20de8389052db48a0272160ec6ead735ba45fe2d2ef6b
SSDEEP

6144:rIGvOy0Q28XnWpCdUL8U9LQVGI+Orp0lb4piv+cubAGR1:rIgOy0QTXWdL8gXap0lspMeNf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2de3348b5f651d2235cefff004683262_JaffaCakes118

Files

2de3348b5f651d2235cefff004683262_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA

Sections

.
Size: 128KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE