3467a4318d2f4f706f71da03253ceeeb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3467a4318d2f4f706f71da03253ceeeb_JaffaCakes118
Size

45KB
MD5

3467a4318d2f4f706f71da03253ceeeb
SHA1

1eef16a4ba345721841e73e12bac5e276da12f98
SHA256

f6f90b4be98c18f74d5749ececd16668056ccd0496ac117c0d0e24885eb5a7b9
SHA512

dcefe2f3fe493b98f62c61bc11c724eb44a5bc8b63c242c6919339e1c0951d73133c7d615efe4162736d0045a04118ce0e297e9596b7bc13684eecd0fd267984
SSDEEP

768:eDZf1SeMvo7QfO2iwhszEb8JZHbP4sa0JGSpLc19KpL+gvlqSSu9J:eDJ1hMQ7QfODwv8TA1YpjdqSSu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3467a4318d2f4f706f71da03253ceeeb_JaffaCakes118

Files

3467a4318d2f4f706f71da03253ceeeb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA

Sections

.text
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_TEXT2
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE