339cf4ba45b646bf720dc93adb7ea43f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

339cf4ba45b646bf720dc93adb7ea43f_JaffaCakes118
Size

734KB
MD5

339cf4ba45b646bf720dc93adb7ea43f
SHA1

5fcb1432e411f52097f73f19c645161c0d959635
SHA256

e88a091f61f336997fec5c320c071bec367b843657cf4bf6384fe234486933aa
SHA512

6ea2287351aef6ee148aedf8fabc79b34ce1f7e9d3a84ce08705418f003a7d9f639e047496f48e4faa2b1b56762716bd000539caaf7f915e4f8714de68964909
SSDEEP

3072:tmcZYJ6jsWJM+zbfM9Gta1c4ZbNROh4w2efff/5IgkKNODeZQQlDZ:EYYJ6Jdzw9G4La4wjK+NOD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
339cf4ba45b646bf720dc93adb7ea43f_JaffaCakes118

Files

339cf4ba45b646bf720dc93adb7ea43f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3bfa0fa66ecfc73b41c17f762a6c7b98

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

msvbvm60

ord696

Sections

0
Size: 568KB - Virtual size: 568KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4
Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE