330479b8c23c042bd6a2b42ccfbc5a47_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

330479b8c23c042bd6a2b42ccfbc5a47_JaffaCakes118
Size

1.4MB
MD5

330479b8c23c042bd6a2b42ccfbc5a47
SHA1

eedd461655c8b51acea71cf381e8f19f377f9a0f
SHA256

05f3e226edb948339c29ca06711b0b5cce5ff469f03bc1949ffad603c312f9b7
SHA512

2dfbb55fea8658e87ce053deee2d37f7f2ef912a79939752d002821d5436ad696681ecba7a374a50744adc203b1182b591489aff8acc977d47abc3df488d07fb
SSDEEP

24576:DV1ycnNUf/p41wyowZ6TmE/D2Zww0/9bWUgGxCgdMcs18z5GDiWyc+pA/jVHSJ0N:hwcnNUf/3wZnZwwUbTgOA8zJWSAxHg0k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
330479b8c23c042bd6a2b42ccfbc5a47_JaffaCakes118

Files

330479b8c23c042bd6a2b42ccfbc5a47_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

GetOnlineLoggerState
GetPluginDirectory
SetOnlineLoggerState

Sections

Size: 17KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 766KB - Virtual size: 870KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

7HpLrt5@
Size: 633KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE